josephkingstone's repositories
YouMayPasser
You shall pass
AtomPePacker
A Highly capable Pe Packer
AWSome-Pentesting
My cheatsheet notes to pentest AWS infrastructure
CheeseOunce
Coerce Windows machines auth via MS-EVEN
cmstplua-uac-bypass
Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.
Defender_Exclusions-BOF
A BOF to determine Windows Defender exclusions.
DumpThatLSASS
Dumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation , it contains Anti-sandbox , if you run it under unperformant Virtual Machine you need to uncomment the code related to it and recompile.
evilginx2-TTPs
Reverse engineered to remove IOCs, added Exchange Online Protection IP blacklist and bing-bot user-agent blocking, DNS configuration and notes on usage.
Evilginx3-Phishlets
This repository provides penetration testers and red teams with an extensive collection of dynamic templates designed specifically for use with Evilginx3.
EvilnoVNC
Ready to go Phishing Platform
FileLessRemoteShellcode
Run Fileless Remote Shellcode directly in memory with Module Unhooking , Module Stomping, No New Thread. This repository contains the TeamServer and the Stager
fileSearcher
A simple BOF (Beacon Object File) to search files in the system
Freeze
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
Freeze.rs
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
gorecon
Initiate external reconnaissance, parse Nessus xml reports and more.
Kerbeus-BOF
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
LocklessBof
Lockless BOF
NiCOFF
COFF and BOF Loader written in Nim
Nuclei-Templates-Collection
Nuclei Templates Collection
ObfLoader
MAC, IPv4, UUID shellcode Loaders and Obfuscators to obfuscate the shellcode and using some native API to converts it to it binary format and loads it.
RustHound
Active Directory data collector for BloodHound written in rust. 🦀
ShadowSpray
A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other objects in the domain.
SharpNTLMRawUnHide
C# version of NTLMRawUnHide
SharpVeeamDecryptor
Decrypt Veeam database passwords