InvokeThreatGuy's repositories
AlternativeShellcodeExec
Alternative Shellcode Execution Via Callbacks
access
Access without a real handle
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
adalanche
Active Directory ACL Visualizer and Explorer - who's really Domain Admin?
ADCollector
A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.
adidnsdump
Active Directory Integrated DNS dumping by any authenticated user
Aggressor-Script-Collection
Cobalt Strike automation scripts collection
AMSICheck_CSharp
A tool to detect the integrity of AmsiScanbuffer in memory ,and defend AMSI bypass
AntiCrack-DotNet
C Sharp project contains a plenty of anti debugging and anti virtualization techniques and anti dll injection.
AtomicSyscall
Tools and PoCs for Windows syscall investigation.
AzureRT
AzureRT - A Powershell module implementing various Azure Red Team tactics
BITB
Browser In The Browser (BITB) Templates
Cronos-Crypter
Cronos Crypter is an simple example of crypter created for educational purposes.
Cronos-Rootkit
Cronos is Windows 10/11 x64 ring 0 rootkit. Cronos is able to hide processes, protect and elevate them with token manipulation.
DLLirant
DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.
dncil
The FLARE team's open-source library to disassemble Common Intermediate Language (CIL) instructions.
frostbyte
FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
garble
Obfuscate Go builds
global-inject-demo
A global injection and hooking example
ICS-Security-Tools
Tools, tips, tricks, and more for exploring ICS Security.
NetShield_Protector
Copy Protection Software and Obfuscator which make you securly implement a license for a user, supports licensing with: HWID, License, USB HWID, and it prevent debugging your application by applying anti-debugger attaching techniques.
pixie
Instant Kubernetes-Native Application Observability
sharpx
.NET functional programming and other utilities
Smap
a drop-in replacement for Nmap powered by shodan.io
volatility3-symbols
Memory mapping profiles for forensic analysis using volatility 3
YouMayPasser
You shall pass