Eyüp Çelik's repositories
MSSQL-Fileless-Rootkit-WarSQLKit
WarSQLKit is a fileless rootkit and attack tool I developed for MS-SQL. With this tool you can rootkit the SQL service that uses CLR on MS-SQL servers. Thus, malicious code can be executed in the process memory of the SQL service without creating a malicious function
SintinePowerWord
Malicious (Meterpreter) Add-in for Word
SintinePowerExcel
Malicious (Meterpreter) Add-in for Excel
SintinePowerOutlook
Malicious (Meterpreter) Add-in for Outlook
SintinePowerPoint
Malicious (Meterpreter) Add-in for PowerPoint
VSIXPreter
VSIXPreter - Visual Studio Meterpreter Loader
5_SQL_Server_File_Uploader_With_CLR
MSSQL Remote File Uploader with CLR
DotNetToJScript
A tool to create a JScript file which loads a .NET v2 assembly from memory.
herpaderping
Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.
Invoke-Obfuscation
PowerShell Obfuscator
Invoke-TheHash
PowerShell Pass The Hash Utils
MorphAES
IDPS & SandBox & AntiVirus STEALTH KILLER. MorphAES is the world's first polymorphic shellcode engine, with metamorphic properties and capability to bypass sandboxes, which makes it undetectable for an IDPS, it's cross-platform as well and library-independent.
opencti
Open Cyber Threat Intelligence Platform
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
PowerLoaderEx
PowerLoaderEx - Advanced Code Injection Technique for x32 / x64
ProcessGhosting
Small POC for process ghosting
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
SharpShooter
Payload Generation Framework
snarf
Snarf man-in-the-middle / relay suite
TpmInitUACBypass
Bypassing User Account Control (UAC) using TpmInit.exe