nickhakkz's starred repositories
Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
malwoverview
Malwoverview is a first response tool used for threat hunting and offers intel information from Virus Total, Hybrid Analysis, URLHaus, Polyswarm, Malshare, Alien Vault, Malpedia, Malware Bazaar, ThreatFox, Triage, InQuest and it is able to scan Android devices against VT.
CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
AtomPePacker
A Highly capable Pe Packer
OpenSSL-2022
Operational information regarding CVE-2022-3602 and CVE-2022-3786, two vulnerabilities in OpenSSL 3
ScreenshotBOF
An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot downloaded in memory.
SharpEfsPotato
Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
RustPacker
Template-based shellcode packer written in Rust, with indirect syscall support. Made with <3 for pentesters.
bof-collection
Collection of Beacon Object Files (BOF) for Cobalt Strike
DLL-Hijack-Search-Order-BOF
DLL Hijack Search Order Enumeration BOF
XorStringsNET
Easy XOR string encryption for NET based binaries
AssemblyHunter
Find .net assemblies locally
Presentations
Slide decks and/or materials from conference presentations
FalsePositives
Tools that trigger False Positive AV alerts
AmsiScanBuffer
Digging deeper into AmsiScanBuffer internals, and identifying 7 possibles AMSI patching by forcing a conditional jump to a branch that sets the return value of AmsiScanBuffer to E_INVALIDARG and makes the AmsiScanBuffer fails
DLL_Version_Enumeration_BOF
A BOF for enumerating version information for DLLs associated for a Beacon process.
EntropyFix
reducing the entropy of your payload