jwardsmith

followers

following

stars

James Ward-Smith's starred repositories

GHunt

🕵️‍♂️ Offensive Google framework.

Language:PythonNOASSERTION15090 510 387

opencti

Open Cyber Threat Intelligence Platform

Language:JavaScriptNOASSERTION4838 132 4435

deepdarkCTI

Collection of Cyber Threat Intelligence sources from the deep and dark web

GPL-3.03957 202 43

pe-bear

Portable Executable reversing tool with a friendly GUI

Language:C++GPL-2.02466 44 32

hacks

A collection of hacks and one-off scripts

Language:Go2075 82 35

at-ps

Adversary Tactics - PowerShell Training

Language:PowerShellNOASSERTION1498 540

SafetyKatz

SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader

Language:C#NOASSERTION1173 54 5

SharpDPAPI

SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.

Language:C#NOASSERTION1077 34 13

decider

A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE ATT&CK® framework.

Language:HTMLNOASSERTION1022 28 29

PurpleSharp

PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments

Language:C#BSD-3-Clause749 31 6

PSPKIAudit

PowerShell toolkit for AD CS auditing based on the PSPKI toolkit.

Language:PowerShellMS-PL745 32 22

stringsifter

A machine learning tool that ranks strings based on their relevance for malware analysis.

Language:PythonApache-2.0653 30 18

SharpDump

SharpDump is a C# port of PowerSploit's Out-Minidump.ps1 functionality.

Language:C#NOASSERTION650 27 1

wwwolf-php-webshell

WhiteWinterWolf's PHP web shell

Language:PHPGPL-3.0540 60

Koh

The Token Stealer

Language:C#BSD-3-Clause474 10 3

OperatorsKit

Collection of Beacon Object Files (BOF) for Cobalt Strike

Language:CMIT440 7 3

SysmonSearch

Investigate suspicious activity by visualizing Sysmon's event log

Language:JavaScriptNOASSERTION412 43 13

botsv1

CC0-1.0343 50 3

ToolAnalysisResultSheet

Tool Analysis Result Sheet

Language:HTML339 330

SharpRoast

DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.

Language:C#NOASSERTION250 190

RestrictedAdmin

Remotely enables Restricted Admin Mode

Language:C#BSD-3-Clause200 70

DeepPass

Hunting for passwords with deep learning

Language:Jupyter NotebookBSD-3-Clause182 5 2

Detection-Ideas-Rules

Detection Ideas & Rules repository.

webwrap

🌯 Give me a web shell, I'll give you a terminal.

Language:Python177 7 1

Invoke-Evasion

PowerShell Obfuscation and Data Science

Language:Jupyter NotebookBSD-3-Clause168 10 1

presentations

SpecterOps Presentations

Web-Shells

Language:PHP134 70

plaintext

Language:PowerShellGPL-3.0119 11 1

PurpleTeamPlaybook

Active Directory Purple Team Playbook

BSD-3-Clause99 7 1

SA-admon

Create a living replica of Active Directory within KV Stores using admon data.

Apache-2.0100