pwnf's repositories
physmem_drivers
A collection of various vulnerable (mostly physical memory exposing) drivers.
InlineExecute-Assembly
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module
Nidhogg
Nidhogg is an all-in-one simple to use rootkit for red teams.
TREVORspray
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
build_a_phish
Ansible playbook to deploy a phishing engagement in the cloud.
KaynLdr
KaynLdr is a Reflective Loader written in C/ASM
Laz-y-templates
Laz-y project compatible C# templates for shellcode injection.
RT-Survival-Guides
Guides/cheatsheets for red teaming engagements and pentesting.
SysWhispers3
SysWhispers on Steroids - AV/EDR evasion via direct system calls.
YouMayPasser
You shall pass
pagodo
pagodo (Passive Google Dork) - Automate Google Hacking Database scraping and searching
frostbyte
FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads
inceptor
Template-Driven AV/EDR Evasion Framework
inflate.py
Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.
obfuscator
ollvm, based on llvm-clang 5.0.2, 6.0.1, 7.0.1, 8.0, 9.0, 9.0.1
CobaltBus
Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus
TokenStomp
C# implementation of the token privilege removal flaw discovered by @GabrielLandau/Elastic
ServiceMove-BOF
New lateral movement technique by abusing Windows Perception Simulation Service to achieve DLL hijacking code execution.
KillDefender
A small POC to make defender useless by removing its token privileges and lowering the token integrity
HVNC
Standalone HVNC Client & Server | Coded in C++ (Modified Tinynuke)
NimPackt-v1
Nim-based assembly packer and shellcode loader for opsec & profit
Cobalt-Clip
Cobaltstrike addons to interact with clipboard
cs2modrewrite
Convert Cobalt Strike profiles to modrewrite scripts
OffensiveVBA
This repo covers some code execution and AV Evasion methods for Macros in Office documents
cobaltstrike-aggressor-scripts
A collection of Cobalt Strike Aggressor scripts.
Azure-Pentest-Tools
A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.
win-brute-logon
Crack any Microsoft Windows users password without any privilege (Guest account included)
DarkLoadLibrary
LoadLibrary for offensive operations