nickhakkz's repositories
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
BloodHound
Six Degrees of Domain Admin
cobalt-arsenal
My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
CobaltStrike-BOF
Collection of beacon BOF written to learn windows and cobaltstrike
CVE-2019-19781
Remote Code Execution Exploit for Citrix Application Delivery Controller and Citrix Gateway [ CVE-2019-19781 ]
cve-2019-19782
This is a tool published for the Citrix ADC (NetScaler) vulnerability. We are only disclosing this due to others publishing the exploit code first.
CVE-2020-0668
Use CVE-2020-0668 to perform an arbitrary privileged file move operation.
DefenderYara
Extracted Yara rules from Windows Defender mpavbase and mpasbase
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
ExploitGSM
Exploit for 6.4 - 6.5 kernels and another exploit for 5.15 - 6.5
PoisonHandler
lateral movement techniques that can be used during red team exercises
sentinel-attack
Repository of sentinel alerts and hunting queries leveraging sysmon and the MITRE ATT&CK framework
SharpAllTheThings
The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.
SharpCookieMonster
Extracts cookies from Chrome.
SharpeningCobaltStrike
in realtime v35/40 dotnet compiler for your linux Cobalt Strike C2. New fresh compiled and obfuscated binary for each use
SharpRDPHijack
A POC Remote Desktop (RDP) session hijack utility for disconnected sessions
sysmon-config
Sysmon configuration file template with default high-quality event tracing
thc-tips-tricks-hacks-cheat-sheet
Various tips & tricks