burstfire187 Goto Github PK

a-red-teamer-diaries

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

aclight

A script for advanced discovery of Privileged Accounts - includes Shadow Admins

active-directory-pentest

ad-attack-defense

Attack and defend active directory using modern post exploitation adversary tradecraft activity

al-khaser

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

attack_range

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

awesome-edr-bypass

Awesome EDR Bypass Resources For Ethical Hacking

blackout

kill anti-malware protected processes (BYOVD)

c2-tool-collection

A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

cobaltstrike-bof

Collection of beacon BOF written to learn windows and cobaltstrike

community-threats

A place to share attack chains for testing people, process, and technology with the entire community. The largest, public library of adversary emulation and adversary simulation plans! #ThreatThursday

defender_exclusions-bof

A BOF to determine Windows Defender exclusions.

edrhunt

Scan installed EDRs and AVs on Windows

elevationstation

elevate to SYSTEM any way we can! Metasploit and PSEXEC getsystem alternative

enterprisepurpleteaming

Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.

hackbrowserdata

Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。

hellsgate

Original C Implementation of the Hell's Gate VX Technique

hivejack

This tool can be used during internal penetration testing to dump Windows credentials from an already-compromised host. It allows one to dump SYSTEM, SECURITY and SAM hives and once copied to the attacker machines provides option to delete these files to clear the trace.

invoke-adenum

Automate Active Directory Enumeration using PowerView

kernelhub

:palm_tree:Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

ldapnomnom

Anonymously bruteforce Active Directory usernames from Domain Controllers by abusing LDAP Ping requests (cLDAP)

ligolo

Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/

lsass-shtinkering

mal-cl

MAL-CL (Malicious Command-Line)

malwareapilibrary

collection of apis used in malware development

malwaremorphology

myfont

offensivecpp

This repo contains C/C++ snippets that can be handy in specific offensive scenarios.

packer-tutorial

A tutorial on how to write a packer for Windows!

peloader

PE loader with various shellcode injection techniques