v4nyl's repositories
.NetConfigLoader
.net config loader
ClickOnce-AppDomain-Manager-Injection
Click Once + App Domain
cookie-monster
BOF to steal browser cookies & credentials
EDR-Telemetry
This project aims to compare and evaluate the telemetry of various EDR products.
EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
entraspray
Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)
git-rotate
Leveraging GitHub Actions to rotate IP addresses during password spraying attacks to bypass IP-Based blocking
GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
GraphStrike
Cobalt Strike HTTPS beaconing over Microsoft Graph API
grimreaper
A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
Handly
Abuse leaked token handles.
keebcap
Win32 keylogger that supports all (non-ime using) languages correctly
Linux-Malware
This is a repo focusing on building Linux Malware.
lolcerts
A repository of code signing certificates known to have been leaked or stolen, then abused by threat actors
Marble
The CIA's Marble Framework is designed to allow for flexible and easy-to-use obfuscation when developing tools.
misc
miscellaneous scripts and programs
Nidhogg
Nidhogg is an all-in-one simple to use rootkit for red teams.
No-Consolation
A BOF that runs unmanaged PEs inline
pendulum
Linux Sleep Obfuscation
Penetration-Testing-Tools
A collection of more than 160+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.
RedTeamCCode
Red Team C code repo
s6_pcie_microblaze
PCI Express DIY hacking toolkit for Xilinx SP605. This repository is also home of Hyper-V Backdoor and Boot Backdoor, check readme for links and info
Shhhloader
Syscall Shellcode Loader (Work in Progress)
SignToolEx
Patching "signtool.exe" to accept expired certificates for code-signing.
thc-tips-tricks-hacks-cheat-sheet
Various tips & tricks
UAC-BOF-Bonanza
Collection of UAC Bypass Techniques Weaponized as BOFs
VcenterKit
Vcenter综合渗透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit