Lee Baird's starred repositories
drawio-desktop
Official electron build of draw.io
HiddenDesktop
HVNC for Cobalt Strike
Red-Teaming-TTPs
Useful Techniques, Tactics, and Procedures for red teamers and defenders, alike!
TeamsPhisher
Send phishing messages and attachments to Microsoft Teams users
PurpleSharp
PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments
ADCSKiller
An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
proxycannon-ng
A private botnet using multiple cloud environments for pentesters and red teamers. - Built by the community during a hackathon at the WWHF 2018 security conference
DarkWidow
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing + Api resolving from TIB + API hashing
windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
RedTeam-Physical-Tools
Red Team Toolkit - A curated list of tools that are commonly used in the field for Physical Security, Red Teaming, and Tactical Covert Entry.
UAC-BOF-Bonanza
Collection of UAC Bypass Techniques Weaponized as BOFs
Proxy-DLL-Loads
A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.
PowershellKerberos
Some scripts to abuse kerberos using Powershell
GregsBestFriend
GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
Direct-Syscalls-A-journey-from-high-to-low
Start with shellcode execution using Windows APIs (high level), move on to native APIs (medium level) and finally to direct syscalls (low level).
evilginx2-TTPs
Reverse engineered to remove IOCs, added Exchange Online Protection IP blacklist and bing-bot user-agent blocking, DNS configuration and notes on usage.
donut-demos
Demos of Donut used in conferences, etc. Mostly for my use, but free for others to use as a reference.