Cliff's starred repositories
litcrypt.rs
a Rust compiler plugin to encrypt string literal at compile time.
Awesome-CobaltStrike
List of Awesome CobaltStrike Resources
RefleXXion
RefleXXion is a utility designed to aid in bypassing user-mode hooks utilised by AV/EPP/EDR etc. In order to bypass the user-mode hooks, it first collects the syscall numbers of the NtOpenFile, NtCreateSection, NtOpenSection and NtMapViewOfSection found in the LdrpThunkSignature array.
SharpDPAPI
SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
AMSITrigger
The Hunt for Malicious Strings
TiEtwAgent
PoC memory injection detection agent based on ETW, for offensive and defensive research purposes
DripLoader
Evasive shellcode loader for bypassing event-based injection detection (PoC)
MsGraphFunzy
Scripts to interact with Microsoft Graph APIs
Cookie-and-Handle-Stealer
C or BOF file to extract WebKit master key to decrypt user cookie
.NetConfigLoader
.net config loader
generative-ai-for-beginners
18 Lessons, Get Started Building with Generative AI 🔗 https://microsoft.github.io/generative-ai-for-beginners/
ChatGPT-for-Cybersecurity-Cookbook
ChatGPT for Cybersecurity Cookbook, published by Packt
PatchlessCLRLoader
.NET assembly loader with patchless AMSI and ETW bypass
RemoteCoercedPotato
A working PoC of a "remote" Coercedpotato
Cobalt-Strike
Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection