ICheer_No0M's starred repositories
windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
EnableWindowsLogSettings
Documentation and scripts to properly enable Windows event logs.
binder-trace
Binder Trace is a tool for intercepting and parsing Android Binder messages. Think of it as "Wireshark for Binder".
CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
awesome-tunneling
List of ngrok/Cloudflare Tunnel alternatives and other tunneling software and services. Focus on self-hosting.
Flask-Unsign-Wordlist
The following package is the standalone wordlist-only component to flask-unsign.
Flask-Unsign
Command line tool to fetch, decode, brute-force and craft session cookies of a Flask application by guessing secret keys.
promon-reversal
Analysis and proof-of-concept bypass of Promon SHIELD's Android application protection
frida_dump
frida dump dex, frida dump so
vdexExtractor
Tool to decompile & extract Android Dex bytecode from Vdex files
MicroBurst
A collection of scripts for assessing Microsoft Azure security
Domain-Persistence-Detection-Triage-and-Recovery-SO-CON-2024
Resources Links for the Research Based on Josh Prager and Nico Shyne's
metabadger
Prevent SSRF attacks on AWS EC2 via automated upgrades to the more secure Instance Metadata Service v2 (IMDSv2).
Java-Android-Magisk-Burp-Objection-Root-Emulator-Easy
Java Android Magisk Burp Objection Root Emulator Easy (JAMBOREE)
Bloodhound-Portable
Bloodhound Portable for Windows
presentations
SpecterOps Presentations
ESC
Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration features. While ESC can be a handy SQL Client for daily tasks, it was originally designed for targeting SQL Servers during penetration tests and red team engagements. The intent of the project is to provide an .exe, but also sample files for execution through mediums like msbuild and PowerShell.
frida-ios-dump-remote
pull decrypted ipa from remote jailbreak device
zygisk-reflutter
Zygisk-based reFlutter
red_team_attack_lab
Red Team Attack Lab for TTP testing & research