Rich Warren's repositories
CVE-2018-0802
PoC Exploit for CVE-2018-0802 (and optionally CVE-2017-11882)
spoolsystem
Print Spooler Named Pipe Impersonation for Cobalt Strike
CVE-2017-8570
Proof of Concept exploit for CVE-2017-8570
cs-rdll-ipc-example
Example code for using named pipe output with beacon ReflectiveDLLs
CVE-2017-11882
Proof-of-Concept exploits for CVE-2017-11882
mimikittenz
A post-exploitation powershell tool for extracting juicy info from memory.
au3decrypt
Decrypt AutoIt malware
Misc-Powershell-Scripts
Random Tools
pyMalleableC2
Python interpreter for Cobalt Strike Malleable C2 Profiles. Allows you to parse, build and modify them programmatically.
action-download-artifact
:gear: A GitHub Action to download an artifact associated with given workflow and commit or other criteria
asar.net
.net asar extractor(maybe archiver)
Better-WP-Security
Source code for the Better WP Security WordPress Plugin
django-auth-policy
Django Authentication Policy
egressbuster
Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.
PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
PyNamecheap
Namecheap API client in Python
SharpDPAPI
SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
SSLPatch
Patch iOS SSL vulnerability (CVE-2014-1266)
tailscale
The easiest, most secure way to use WireGuard and 2FA.
vmcloak
Automated Virtual Machine Generation and Cloaking for Cuckoo Sandbox.