v4nyl's starred repositories
Checklists
Red Teaming & Pentesting checklists for various engagements
BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
drakvuf-sandbox
DRAKVUF Sandbox - automated hypervisor-level malware analysis system
GraphStrike
Cobalt Strike HTTPS beaconing over Microsoft Graph API
elastic-container
Stand up a simple Elastic container with Kibana, Fleet, and the Detection Engine
RemoteTLSCallbackInjection
Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process
AutoSmuggle
Utility to craft HTML or SVG smuggled files for Red Team engagements
cookie-monster
BOF to steal browser cookies & credentials
SymProcAddress
Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)
AITMWorker
Proof of concept: using a Cloudflare worker for AITM attacks
unmanaged-dotnet-patch
Modify managed functions from unmanaged code
Proxy_Egress_Persistence
A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
EnableWebDAVClient-BOF
Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
LdapRelayScan
Check for LDAP protections regarding the relay of NTLM authentication
CattleStorm
Python wrapper script to interact with the BeEF (https://github.com/beefproject/beef) API and execute modules on all connected zombie browsers at the same time.