mikismaos's starred repositories
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
ThreatCheck
Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
ADExplorerSnapshot.py
ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.
Egress-Assess
Egress-Assess is a tool used to test egress data detection capabilities
InlineExecute-Assembly
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module
DavRelayUp
DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the default settings).
LinkedInDumper
Python 3 script to dump/scrape/extract company employees from LinkedIn API
go-secdump
Tool to remotely dump secrets from the Windows registry
JustEvadeBro
JustEvadeBro, a cheat sheet which will aid you through AMSI/AV evasion & bypasses.
dcomhijack
Lateral Movement Using DCOM and DLL Hijacking
VNCDecrypt
Decrypt passwords stored in VNC files
cme-6.0-release-backup
latest crackmapexec somehow pulled from the internet...