th3k3ymak3r's repositories
GraphSpy
Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
dropper
Project that generates Malicious Office Macro Enabled Dropper for DLL SideLoading and Embed it in Lnk file to bypass MOTW
Cobalt-Strike
Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
espoofer
An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻
MsGraphFunzy
Script to dump emails through Microsoft Graph API
Security-101
7 Lessons, Kick-start Your Cybersecurity Learning.
COM-Hunter
COM Hijacking VOODOO
Stealerium
Stealer + Clipper + Keylogger
KrbRelayUp
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
goldberg
A Rust-based obfuscation macro library!
CobaltNotion
A spin-off research project. Cobalt Strike x Notion collab 2022
SQLRecon
A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
O365-Doppelganger
A quick handy script to harvest credentials off of a user during a Red Team and get execution of a file from the user
PrivFu
Kernel mode WinDbg extension and PoCs for token privilege investigation.
BofAllTheThings
Creating a repository with all public Beacon Object Files (BoFs)
ToolDump-v1
Some of my custom "tools".
PowerRunAsSystem
Run application as system with interactive system process support (active Windows session)
365Inspect
A PowerShell script that automates the security assessment of Microsoft Office 365 environments.
BackupOperatorToDA
From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
CS-BOFs
Collection of CobaltStrike beacon object files
KrbRelay
Framework for Kerberos relaying
SharpStay
.NET project for installing Persistence
Telepathy
Public release of Telepathy, an OSINT toolkit for investigating Telegram chats.
PPLKiller
Tool to bypass LSA Protection (aka Protected Process Light)