Josh Abraham's repositories
hashview
A web front-end for password cracking and analytics
phnt-single-header
Single header version of System Informer's phnt library.
Windows-Internals
Important notes and topics on my journey towards mastering Windows Internals
AceLdr
Cobalt Strike UDRL for memory scanner evasion.
DEFCON-31-Syscalls-Workshop
Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".
ProtectMyTooling
Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it with your implant, it does a lot of sneaky things and spits out obfuscated executable.
donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
inceptor
Template-Driven AV/EDR Evasion Framework
Blackout
kill anti-malware protected processes ( BYOVD) (Microsoft Won )
ElusiveMice
Cobalt Strike User-Defined Reflective Loader with AV/EDR Evasion in mind
titanldr-ng
A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge years ago.
Windows-APT-Warfare
Windows APT Warfare, published by Packt
XOREncryption
XOR encryption implementations for several languages.
gophish
Open-Source Phishing Toolkit
laZzzy
laZzzy is a shellcode loader, developed using different open-source libraries, that demonstrates different execution techniques.
Dragnmove
Infect Shared Files In Memory for Lateral Movement
sRDI
Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode
Mythic
A collaborative, multi-platform, red teaming framework
MemoryModule
Library to load a DLL from memory.
sally-the-sliver-siren
A custom sliver client that will send slack notifications upon new beacons / sessions that check in
InvisibilityCloak
Proof-of-concept obfuscation toolkit for C# post-exploitation tools
mmLoader
A library for loading dll module bypassing windows PE loader from memory (x86/x64)
SharpView
C# implementation of harmj0y's PowerView
DarkLoadLibrary
LoadLibrary for offensive operations
common-git-commands
This is a cheatsheet of common git commands with simple explanation for every command. I hope it's useful.
SimplePELoader
In-Memory PE Loader
vulcan
a tool to make it easy and fast to test various forms of injection
zwhawk
A kernel rootkit with remote command and control interface for windows