SWaNk's repositories
40k-nuclei-templates
40,000+ Nuclei templates for security scanning and detection across diverse web applications and services
awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
Creds
Some usefull Scripts and Executables for Pentest & Forensics
fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
Artillery
CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administrator.
atheon
Anti-Ransomware Toolkit with kernel drivers.
Blackbone
Windows memory hacking library
BYOVDKit
bring your own vulnerable driver
dynmx
Signature-based detection of malware features based on Windows API call sequences. It's like YARA for sandbox API traces!
Firefox-WebInject
Firefox webInjector capable of injecting codes into webpages using a mitmproxy.
go-stealer
Cookie & Logins stealer for Firefox + Chrome, demonstration only
HandleKatz
PIC lsass dumper using cloned handles
Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
KDU
Kernel Driver Utility
nanodump
The swiss army knife of LSASS dumping
no-defender
A slightly more fun way to disable windows defender. (through the WSC api)
NoMoreCookies
Browser Protector against various stealers, written in C# & C/C++.
PE-Obfuscator
PE obfuscator with Evasion in mind
PowerShell-Red-Team
Collection of PowerShell functions a Red Teamer may use in an engagement
PPLBlade
Protected Process Dumper Tool
PPLcontrol
Controlling Windows PP(L)s
PPLinject
Inject unsigned DLL into Protected Process Light (PPL)
PPLKiller
Protected Processes Light Killer
r77-rootkit
Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
VBoxCloak
A PowerShell script that attempts to help malware analysts hide their Windows VirtualBox Windows VM's from malware that may be trying to evade analysis. Guaranteed to bring down your pafish ratings by at least a few points ;)
VMwareCloak
A PowerShell script that attempts to help malware analysts hide their VMware Windows VM's from malware that may be trying to evade analysis.
windows-ps-callbacks-experiments
Files for http://blog.deniable.org/posts/windows-callbacks/
WinPwn
Automation for internal Windows Penetrationtest / AD-Security