Vincent Yiu's repositories
ATT-CK_Analysis
Repository for my ATT&CK analysis research.
AzureAppC2
A script that can be deployed to Azure App for C2 / Proxy / Redirector
bluekeep_CVE-2019-0708_poc_to_exploit
Porting BlueKeep PoC from @Ekultek to actual exploits
Cobaltstrike-MS17-010
cobaltstrike ms17-010 module and some other
Kali-Setup
Script for Kali that adds a bunch of tools and customizes it to be much better
RDPassSpray
Python3 tool to perform password spraying using RDP
EvilClippy
A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.
limbernie.github.io
my security journey
Malleable-C2-Profiles-1
Cobalt Strike - Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike https://www.cobaltstrike.com/.
argumentinjectionhammer
A Burp Extension designed to identify argument injection vulnerabilities.
CVE-2019-0708
dump
DAFT
DAFT: Database Audit Framework & Toolkit
Dumpert
LSASS memory dumper using direct system calls and API unhooking.
gobuster
Directory/file & DNS busting tool written in Go
ipv6-dns
Using this host, you can access to google, youtube, facebook in China Mainland
Kaonashi
Wordlist, rules and masks from Kaonashi project (RootedCON 2019)
NetWatch
.NET 3.5 tool to create a NetworkAddressChange Event and listen for new IPv4 address from adapters with status of "UP". Intended for monitoring for targets connecting to VPNs.
owasp-mstg
The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security development, testing and reverse engineering.
passivedns
A network sniffer that logs all DNS server replies for use in a passive DNS setup
pe-union
PEunion (Binder, Crypter & Downloader)
PivotSuite
Network Pivoting Toolkit
SharpSCADA
C# SCADA
SharpTask
SharpTask is a simple code set to interact with the Task Scheduler service api and is compatible with Cobalt Strike.
TSMSISrv_poc
C# POC code for the SessionEnv dll hijack by utilizing called functions of TSMSISrv.dll
WMIPersistence
WMI Event Subscription Persistence in C#