tigr0w's repositories
AllTheThingsExec
Executes Blended Managed/Unmanged Exports
cs2webconfig
Convert Cobalt Strike profiles to IIS web.config files
antonioCoco_Mapping-Injection
Just another Windows Process Injection
btbd_umap
UEFI bootkit for driver manual mapping
capt-meelo_KernelCallbackTable-Injection
Code used in this post https://captmeelo.com/redteam/maldev/2022/04/21/kernelcallbacktable-injection.html
CheckPointSW_InviZzzible
InviZzzible is a tool for assessment of your virtual environments in an easy and reliable way. It contains the most recent and up to date detection and evasion techniques as well as fixes for them.
cloudflare_flan
A pretty sweet vulnerability scanner
GreatSCT_GreatSCT
The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool is intended for BOTH red and blue team.
hardenedvault_vaultboot
Security payload for next-Gen firmware architecture
HTTPS_CSharp_Server
Implementing a Multithreaded HTTP/HTTPS Debugging Proxy Server in C# xref. `https://www.codeproject.com/Articles/93301/Implementing-a-Multithreaded-HTTP-HTTPS-Debugging`
janoglezcampos_DeathSleep
A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementing page protection changes during no execution.
klezVirus_SharpLdapRelayScan
C# Port of LdapRelayScan
LloydLabs_dearg-thread-ipc-stealth
A novel technique to communicate between threads using the standard ETHREAD structure
LloydLabs_Windows-API-Hashing
This is a simple example and explanation of obfuscating API resolution via hashing
nichanis_Rwx-Injector
injector that actually works for eac and battleye and active updates
PSPReverse_PSPEmu
PSP emulator
securifybv_Visual-Studio-BOF-template
A Visual Studio template used to create Cobalt Strike BOFs
thefLink_RecycledGate
Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll
timwhitez_AddressOfEntryPoint-injection
x64 version
usbgadget-tool
Dumb USB HID gadget creator for Android (for triggering device driver install on Windows for LPE)
VollRagm_KernelSharp
C# Kernel Mode Driver example using NativeAOT
zeroperil_HookDump
Security product hook detection