pwnf's repositories
BobTheSmuggler
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
ChromeKatz
Dump cookies directly from Chrome process memory
DDSpoof
DDSpoof is a tool that enables DHCP DNS Dynamic Update attacks against Microsoft DHCP servers in AD environments.
devrelaxdown
Basic obfuscation of davrelayup
DirtyCLR
An App Domain Manager Injection DLL PoC on steroids
doppelganger_assistant
Card calculator and Proxmark3 Plugin for writing and/or simulating every card type that Doppelgagner Pro, Stealth, and MFAS support.
egp_basicinstall
Installing EvilGoPhish via Curl to https://www.install-evilgophish.net
Evilginx3-Phishlets
This repository provides penetration testers and red teams with an extensive collection of dynamic phishing templates designed specifically for use with Evilginx3.
family-of-client-ids-research
Research into Undocumented Behavior of Azure AD Refresh Tokens
FormThief
Spoofing desktop login applications with WinForms and WPF
GetWebDAVStatus
Determine if the WebClient Service (WebDAV) is running on a remote system
GraphSpy
Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
grimreaper
A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
HSC24RedTeamInfra
Slides and Codes used for the workshop Red Team Infrastructure Automation
ldeep
In-depth ldap enumeration utility
linWinPwn
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
NativeDump
Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)
ntlm_theft
A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
ReverseSocks5
Single executable reverse socks5 proxy written in Golang.
SteppingStones
A Red Team Activity Hub
teamstracker
using graph proxy to monitor teams user presence
ThreadlessInject-C
This repository implements Threadless Injection in C