S's repositories
CallstackSpoofingPOC
C++ self-Injecting dropper based on various EDR evasion techniques.
Caro-Kann
Encrypted shellcode Injection to avoid Kernel triggered memory scans
CLRInjector
A PoC .NET-specific process injection tool
CreateRemoteThreadPlus
CreateRemoteThread: how to pass multiple parameters to the remote thread function without shellcode.
CsWhispers
Source generator to add D/Invoke and indirect syscall methods to a C# project.
DirtyCLR
An App Domain Manager Injection DLL PoC on steroids
DllNotificationInjection
A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and remote processes.
email2phonenumber
A OSINT tool to obtain a target's phone number just by having his email address
EvtPsst
EvtPsst
FormThief
Spoofing desktop login applications with WinForms and WPF
gonut
Generator of https://github.com/TheWover/donut in pure Go. supports compression, AMSI/WLDP/ETW bypass, etc.
HSC24RedTeamInfra
Slides and Codes used for the workshop Red Team Infrastructure Automation
LdrLockLiberator
For when DLLMain is the only way
lsa-whisperer
Tools for interacting with authentication packages using their individual message protocols
Marble
The CIA's Marble Framework is designed to allow for flexible and easy-to-use obfuscation when developing tools.
mhydeath
Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.
NativeDump
Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)
NtlmThief
Extracting NetNTLM without touching lsass.exe
perfect-loader
Load a dynamic library from memory by modifying the native Windows loader
Periscope
Fully Integrated Adversarial Operations Toolkit (C2, stagers, agents, ephemeral infrastructure, phishing engine, and automation)
PHISHLET-EVILGINX3
PHISHLET [EVILGINX3] Settings for phishing sites are written in the yaml language. This is a long development of my collection that I have been working on for the last 3 months due to changes in site security rules in particular scripts for bypassing the CloudFlare security. 🙌 I PRESENT to you my collection from the sites : 1Password / Binance
PoolPartyBof
A beacon object file implementation of PoolParty Process Injection Technique.
SharpShares
Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
ShellGhost
A memory-based evasion technique which makes shellcode invisible from process start to end.
SuperSharpShares
SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your associated domain account.
winsos-poc
A PoC demonstrating code execution via DLL Side-Loading in WinSxS binaries.