Maximus's repositories
BestEdrOfTheMarket
Little AV/EDR bypassing lab for training & learning purposes
windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
BobTheSmuggler
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
CrimsonEDR
Simulate the behavior of AV/EDR for malware development training.
EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
gcpwn
Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @WebbinRoot
HijackLibs
Project for tracking publicly disclosed DLL Hijacking opportunities.
IOXIDResolver
IOXIDResolver.py from AirBus Security
LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
LetMeowIn
A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.
LocalKdc
Info on how to use Kerberos KDC on a non-domain joined host
No-Consolation
A BOF that runs unmanaged PEs inline
npk
A mostly-serverless distributed hash cracking platform
pan-python
Multi-tool set for Palo Alto Networks PAN-OS, Panorama, WildFire and AutoFocus
SharpEfsPotato
Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
ShellGhost
A memory-based evasion technique which makes shellcode invisible from process start to end.
siphon
:alembic: Intercept stdin/stdout/stderr for any process
Snaffler
a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
SOAPHound
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.
Subdominator
The Internets #1 Subdomain Takeover Tool
SysWhispers
AV/EDR evasion via direct system calls.
traitor
:arrow_up: :skull_and_crossbones: :fire: Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock
TypeScript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
wmiexec-Pro
New generation of wmiexec.py