jfmaes

LazySign

Create fake certs for binaries using windows binaries and the power of bat files

SharpZipRunner

Executes position independent shellcode from an encrypted zip

Invoke-DLLClone

Koppeling x Metatwin x LazySign

SharpHandler

AmsiHooker

Hookers are cooler than patches.

SharpNukeEventLog

nuke that event log using some epic dinvoke fu

SharpLNKGen-UI

UI for creating LNKs

DeepSleep

all credits go to @mgeeky

CSharpReflectionWorkshop

The repository that complements the From zero to hero: creating a reflective loader in C# workshop

Ansible-EmpireSuite

ansible roles to download and install empire (BC-Security),deathstar(byt3bl33der) and starkiller (BC-Security)

Emulation-Workshop

The repository accompanying the Buer Emulation workshop

FunWithServerless

talks-cons

aggregated repo for all conferences and talks I am giving

blogposts-talks-and-tidbits

all random stuff that dont warrant a seperate repo

SharpXOR

XOR crypt/decrypt using C#

DRegHide

fun stuff with null bytes and dinvoke

sharpbysentinel

lol firewall

SEC565-Tools

NerveGas

messing around with ETW in C#

x33fcon-workshop

DInvoke

Dynamically invoke arbitrary unmanaged code from managed code without PInvoke.

maldev-for-dummies

A workshop about Malware Development

RegFetch

Interfaces with winsockets to fetch a txt file, parses the file and changes the registry accordingly

EDRSandblast-GodFault

EDRSandblast-GodFault

Get-ServiceACL

courtesey of a gist I found on github

PowerUpSQL

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

WinAPI-Tricks

Collection of various WINAPI tricks / features used or abused by Malware

OffensiveNim

My experiments in weaponizing Nim (https://nim-lang.org/)

poc

Proof of Concepts

transformationsuite

python library for transformations