galoryber's starred repositories
profiler-lateral-movement
Lateral Movement via the .NET Profiler
decode-spam-headers
A script that helps you understand why your E-Mail ended up in Spam
openvasreporting
OpenVAS Reporting: Convert OpenVAS XML report files to reports
SharpSystemTriggers
Collection of remote authentication triggers in C#
SharpTokenFinder
C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
PackMyPayload
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
Parasite-Invoke
Hide your P/Invoke signatures through other people's signed assemblies
BobTheSmuggler
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
Docker-OSX
Run macOS VM in a Docker! Run near native OSX-KVM in Docker! X11 Forwarding! CI/CD for OS X Security Research! Docker mac Containers.
SWH-Injector
An Injector that can inject dll into game process protected by anti cheat using SetWindowsHookEx.
LdrLockLiberator
For when DLLMain is the only way
PoolPartyBof
A beacon object file implementation of PoolParty Process Injection Technique.
ThreadlessInject-BOF
BOF implementation of @_EthicalChaos_'s ThreadlessInject project. A novel process injection technique with no thread creation, released at BSides Cymru 2023.
Evilginx2-Phishlets
Evilginx3 Phishlets version (0.2.3 & above) Only For Testing/Learning Purposes
Shellcode-Injection-Techniques
A collection of C# shellcode injection techniques. All techniques use an AES encrypted meterpreter payload. I will be building this project up as I learn, discover or develop more techniques. Some techniques are better than others at bypassing AV.
SignToolEx
Patching "signtool.exe" to accept expired certificates for code-signing.
ThreadlessInject
Threadless Process Injection using remote function hooking.
SingleDose
Generate Shellcode Loaders & Injects