Beast code in Giters

nickhakkz's starred repositories

katana

A next-generation crawling and spidering framework.

Language:GoMIT10889 87 287

Infosec_Reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

Language:CSSMIT5535 265 17

Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.

Language:PythonGPL-3.02929 121 35

RedEye

RedEye is a visual analytic tool supporting Red & Blue Team operations

Language:TypeScriptBSD-3-Clause2653 45 30

CloudPentestCheatsheets

This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.

MIT2546 103 1

Snaffler

a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )

Language:C#GPL-3.02020 26 54

Nidhogg

Nidhogg is an all-in-one simple to use rootkit.

Language:C++GPL-3.01728 34 15

bloodyAD

BloodyAD is an Active Directory Privilege Escalation Framework

Language:PythonMIT1186 13 41

SharpSCCM

A C# utility for interacting with SCCM

Language:C#GPL-3.0557 7 13

AtomPePacker

A Highly capable Pe Packer

Language:CApache-2.0548 16 7

OpenSSL-2022

Operational information regarding CVE-2022-3602 and CVE-2022-3786, two vulnerabilities in OpenSSL 3

MIT529 47 6

Methodology

404 10 1

TerraLdr

A Payload Loader Designed With Advanced Evasion Features

Language:CApache-2.0384 7 4

ScreenshotBOF

An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memory.

Language:C340 6 4

SharpEfsPotato

Local privilege escalation from SeImpersonatePrivilege using EfsRpc.

Language:C#299 40

Windows-SignedBinary

Language:Python236 110

RustPacker

Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.

Language:RustGPL-3.0225 3 6

HelpColor

Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type

BSD-3-Clause189 120

bof-collection

Collection of Beacon Object Files (BOF) for Cobalt Strike

Language:C++169 3 3

NoRunPI

Run Your Payload Without Running Your Payload

Language:CMIT16700

DLL-Hijack-Search-Order-BOF

DLL Hijack Search Order Enumeration BOF

Language:C140 20

XorStringsNET

Easy XOR string encryption for NET based binaries

Language:C#MIT124 20

exe_who

Executables on Disk? Bleh 🤮

Language:Rust98 20

AssemblyHunter

Find .net assemblies locally

Language:C#BSD-3-Clause84 4 1

PatchAMSI

Bypass AMSI by patching AmsiScanBuffer api memory

Language:C++7000

Presentations

Slide decks and/or materials from conference presentations

55 20

FalsePositives

Tools that trigger False Positive AV alerts

42 5 2

AmsiScanBuffer

Digging deeper into AmsiScanBuffer internals, and identifying 7 possibles AMSI patching by forcing a conditional jump to a branch that sets the return value of AmsiScanBuffer to E_INVALIDARG and makes the AmsiScanBuffer fails

Language:C++4000

DLL_Version_Enumeration_BOF

A BOF for enumerating version information for DLLs associated for a Beacon process.

Language:C12 20

EntropyFix

reducing the entropy of your payload

Language:C4 10