Thiago Mayllart's repositories
domainthreat
Daily Domain Monitoring to detect phishing and brand impersonation with subdomain enumeration and source code scraping
coffee
A COFF loader made in Rust
Pyramid
a tool to help operate in EDRs' blind spots
LOLDrivers
Living Off The Land Drivers
eagle-rs
Rusty Rootkit: Windows Kernel Driver in Rust for Red Teamers
clairvoyance
Obtain GraphQL API schema despite disabled introspection!
Apollo
A .NET Framework 4.0 Windows Agent
PackMyPayload
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
DnsRip
DnsRip is a simple .Net component for doing DNS lookups
DarkMelkor
Modified Version of Melkor @FuzzySecurity capable of creating disposable AppDomains in injected processes.
Mythic
A collaborative, multi-platform, red teaming framework
NET-Obfuscate
Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
StandIn
StandIn is a small .NET35/45 AD post-exploitation toolkit
SharpNamedPipePTH
Pass the Hash to a named pipe for token Impersonation
Mythic_C2_Container
PyPi package installed in the Mythic C2 Profile Containers
RedTeamCCode
Red Team C code repo
OffensiveCSharp
Collection of Offensive C# Tooling
EvilClippy
A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.
NightVision
An Extended, Modulair, Host Discovery Framework
GadgetToJScript
A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.
MiscTools
Miscellaneous Tools
Covenant_Alternate
Covenant is a collaborative .NET C2 framework for red teamers.
ProcessInjection
This program is designed to demonstrate various process injection techniques
evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
proxmark3
RRG / Iceman repo - Proxmark3 / Proxmark / RFID / NFC