kyle's repositories
WDACTools
A PowerShell module to facilitate building, configuring, deploying, and auditing Windows Defender Application Control (WDAC) policies
MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
transacted_hollowing
Transacted Hollowing - a PE injection technique, hybrid between ProcessHollowing and ProcessDoppelgänging
PowerUpSQL
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
InveighZero
.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
SharpView
C# implementation of harmj0y's PowerView
OSEP-Code-Snippets
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
SharpHound3
C# Data Collector for the BloodHound Project, Version 3
SSRF-Internal-Fuzzer
Webhosting services that allow you to hit localhost are dangerous. This is used to Fuzz the ports for services. Used in Kotarak.
Visual-Studio-BOF-template
A Visual Studio template used to create Cobalt Strike BOFs
OffensiveCSharp
Collection of Offensive C# Tooling
RunasCs
RunasCs - Csharp and open version of windows builtin runas.exe
Ghostpack-CompiledBinaries
Compiled Binaries for Ghostpack (.NET v4.0)
HandleKatz
PIC lsass dumper using cloned handles
DarkLoadLibrary
LoadLibrary for offensive operations
oleviewdotnet
A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container
OffensivePH
OffensivePH - use old Process Hacker driver to bypass several user-mode access controls
CSSG
Cobalt Strike Shellcode Generator
Modded_oscp_template
Modded a popular template.
Methodology
OSCP Methodology
PowerLessShell
Run PowerShell command without invoking powershell.exe
sysmon
Sysmon and wazuh integration with Sigma sysmon rules [updated]
CredBandit
Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that back through your already existing Beacon communication channel
InlineExecute-Assembly
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module
ThreatCheck
Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
browser-scripts
Collection of small JavaScript functions and scripts that can be used in the browser to interact with Lair
capsulecorp-pentest
Vagrant VirtualBox environment for conducting an internal network penetration test
TiEtwAgent
PoC memory injection detection agent based on ETW, for offensive and defensive research purposes