InvokeThreatGuy's repositories
arya
Arya is a unique tool that produces pseudo-malicious files meant to trigger YARA rules. You can think of it like a reverse YARA.
AzADServicePrincipalInsights
Insights and change tracking on Azure Active Directory Service Principals (Enterprise Applications and Applications)
BofAllTheThings
Creating a repository with all public Beacon Object Files (BoFs)
BofRoast
Beacon Object Files for roasting Active Directory
BSidesRoc2022_Linux_Malware_Analysis_Course
BSidesRoc 2022 Linux Malware/Forensics Course
FitM
FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulation. It's fast and comparably easy to set up.
GoReSym
Go symbol recovery tool
LeakedHandlesFinder
Leaked Windows processes handles identification tool
ntTraceControl
Powershell Event Tracing Toolbox
O365-Doppelganger
A quick handy script to harvest credentials off of a user during a Red Team and get execution of a file from the user
obfuscation_detection
Collection of scripts to pinpoint obfuscated code
openvpn-install
Set up your own OpenVPN server on Debian, Ubuntu, Fedora, CentOS or Arch Linux.
pixie-demos
Demos for Pixie: github.com/pixie-io/pixie
PoolMonXv2
Kernel Pool Monitor
PSSW100AVB
A list of useful Powershell scripts with 100% AV bypass (At the time of publication).
qiling
Qiling Advanced Binary Emulation Framework
Sentinel-Queries
Collection of KQL queries
SharpDecryptPwd
对密码已保存在 Windwos 系统上的部分程序进行解析,包括:Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品(Xshell,Xftp)。源码:https://github.com/RowTeam/SharpDecryptPwd
ShellcodeTemplate
An easily modifiable shellcode template for Windows x64/x86
SyscallPack
BOF and Shellcode for full DLL unhooking using dynamic syscalls
SysWhispers3
SysWhispers on Steroids - AV/EDR evasion via direct system calls.
TCC-ClickJacking
A proof of concept for a clickjacking attack on macOS.
ToolDump-v1
Some of my custom "tools".
vcpkg
C++ Library Manager for Windows, Linux, and MacOS
windows-hardening-scripts
Windows 10/11 hardening scripts