nickhakkz's starred repositories
EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
BestEdrOfTheMarket
Little user-mode AV/EDR evasion lab for training & learning purposes
FilelessPELoader
Loading Remote AES Encrypted PE in memory , Decrypted it and run it
No-Consolation
A BOF that runs unmanaged PEs inline
LdrLibraryEx
A small x64 library to load dll's into memory.
Kerbeus-BOF
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
PoolPartyBof
A beacon object file implementation of PoolParty Process Injection Technique.
.NetConfigLoader
.net config loader
llvm-yx-callobfuscator
LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.
SingleDose
Generate Shellcode Loaders & Injects
ProcessStomping
A variation of ProcessOverwriting to execute shellcode on an executable's section
Forbidden-Buster
A tool designed to automate various techniques in order to bypass HTTP 401 and 403 response codes and gain access to unauthorized areas in the system. This code is made for security enthusiasts and professionals only. Use it at your own risk.
modifyCertTemplate
ADCS cert template modification and ACL enumeration
uac-bypass-oneliners
Collection of one-liners to bypass User Account Control (UAC) in Windows. These techniques exploit certain behavior in Windows applications to elevate privileges.
adcshunter
Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
Red-Team-Ops-Toolbox
A collection of open-source and commercial Red Team tools that aid in red team operations. This repository will help you with the majority part of red team engagement