ewilded

shelling

SHELLING - a comprehensive OS command injection payload generator

psychoPATH

psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-searching payload generator, LFI mode, nix & windows support, single byte generator, payload export.

icmpsh-s-linux

GNU/Linux version of the https://github.com/inquisb/icmpsh slave

SCARY

PHP Source Code Analyzer written in Perl (taint checking)

localdataHog

String-based secret-searching tool (high entropy and regexes) based on truffleHog

splitproc

Proof of concept code for split processing EDR evasion.

api-ms-win-code-debug-l1-1-0

A sample DLL appending a text file with the list of high integrity/SYSTEM process that loaded it (for issue testing).

DFIR

Wykłady stworzone z myślą o studentach Politechniki Opolskiej (Wykrywanie i reagowanie na incydenty bezpieczeństwa).

Windows_persistence

A collection of persistence methods for Windows

dictator

Custom dictionary generation framework intended for enumertion of URL-s (directories, variables). With a bit of adjustment it would also be a good fit for passwords as well. This is currently NOT a Burp extension.

registry_hidden_key

A CPP demo POC based on https://github.com/ewhitehats/InvisiblePersistence/blob/master/InvisibleRegValues_Whitepaper.pdf

CVE-2024-0197-POC

Proof of concept for Local Privilege Escalation in Thales Sentinel HASP LDK.

ZScaler_msiexec_LPE_2023

My proof of concept for a Local Privilege Escalation via msiexec in ZScaler Client Connector 3.7.2.18

CVE-2023-37250-POC

PoC

CVE-2023-38041-POC

Ivanti Pulse Secure Client Connect Local Privilege Escalation CVE-2023-38041 Proof of Concept

CVE-2024-25376-POC

CVE-2024-25376 - Local Privilege Escalation in TUSBAudio

CVE-2023-7016-POC

POC for the flaw in Thales SafeNet Authentication Client prior to 10.8 R10 on Windows that allows an attacker to execute code at a SYSTEM level via local access.

CVE-2024-35315-POC

Mitel Collab Local Privilege Escalation CVE-2024-35315 PoC

fucking_with_filenames

Mobile

Wykłady stworzone z myślą o studentach Politechniki Opolskiej

process-injection-postgre

A proof of concept for https://hackingiscool.pl/breaking-out-from-stripped-tokens-using-process-injection/

attack_monitor

Endpoint detection & Malware analysis software

COMThanasia

A set of programs for analyzing common vulnerabilities in COM

grey_reach

A BurpSuite Pro plugin aimed at deepening the coverage of blackbox/greybox tests by reaching non-default conditional blocks.

InfinityHook

Hook system calls, context switches, page faults and more.

MBE-snippets

MimeSpray

MimeCast Password Spraying Tool

Service_SDDLs

POC codes and helpers used in https://hackingiscool.pl/using-edr-telemetry-for-offensive-research-part-2-service-sddls/

SharpBlock

A method of bypassing EDR's active projection DLL's by preventing entry point exection

shellnoob

A shellcode writing toolkit