Tijme Gommers's repositories
angularjs-csti-scanner
Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
not-your-average-web-crawler
A web crawler (for bug hunting) that gathers more than you can imagine.
amd-ryzen-master-driver-v17-exploit
Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).
cmstplua-uac-bypass
Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.
kernel-mii
Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.
reverse-engineering
This repository contains some of the executables that I've cracked.
conferences
Some of the presentations, workshops, and labs I gave at public conferences.
forked-sharphose
Asynchronous Password Spraying Tool in C# for Windows Environments
latex-boilerplate-presentation
A simple yet comprehensive LaTeX presentation boilerplate (example) for giving killer presentations.
forked-donut
Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters
forked-pillow
The friendly PIL fork (Python Imaging Library)
forked-seatbelt
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
forked-ansible-role-openvpn
Ansible Playbook for OpenVPN on CentOS/Fedora/RHEL clones
forked-best-edr-of-the-market
Little AV/EDR bypassing lab for training & learning purposes
forked-certify
Active Directory certificate abuse.
forked-dlms-cosem
A Python library for DLMS/COSEM
forked-dpat
Domain Password Audit Tool for Pentesters
forked-eureka
Elegant iOS form builder in Swift
forked-gokrb5
Pure Go Kerberos library for clients and services
forked-jekyll-get-json
Import remote JSON data into the data for a Jekyll site
forked-kerbrute
A tool to perform Kerberos pre-auth bruteforcing
forked-lofl
Living Off the Foreign Land setup scripts
forked-powersploit
PowerSploit - A PowerShell Post-Exploitation Framework
forked-sprayad
A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.
forked-sprayingtoolkit
Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient