seahop Goto Github PK
Name: Sean Hopkins
Type: User
Bio: Red Teamer. Just out here creating some simple PoCs for red teamy things. Amateur coder. No best practices here.
Twitter: _seahop
Location: United States
Blog: rtnotes.com
Name: Sean Hopkins
Type: User
Bio: Red Teamer. Just out here creating some simple PoCs for red teamy things. Amateur coder. No best practices here.
Twitter: _seahop
Location: United States
Blog: rtnotes.com
Privilege Escalation Enumeration Script for Windows
Kernel mode WinDbg extension and PoCs for token privilege investigation.
The Definitive Guide To Process Cloning on Windows
Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted file
Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it with your implant, it does a lot of sneaky things and spits out obfuscated executable.
miscellaneous codes
This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCreateThreadNotifyRoutine from ESET Security to bypass the driver detection
Password list generator that focuses on keywords mutated by commonly used password creation patterns
Mimikatz implementation in pure Python
Collection of random RedTeam scripts.
A PoC ransomware sample to test out your ransomware response strategy.
Hellsgate + Halosgate/Tartarosgate. Ensures that all systemcalls go through ntdll.dll
Red Team C code repo
Red Teaming Tactics and Techniques
Execute shellcode from a remote-hosted bin file using Winhttp.
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
Revenant - A 3rd party agent for Havoc that aims to demonstrate evasion techniques in the context of a C2 framework
Trying to tame the three-headed dog.
C# Reflective loader for unmanaged binaries.
Run a Exe File (PE Module) in memory (like an Application Loader)
The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
ScareCrow - Payload creation framework designed around EDR bypass.
An alternative screenshot capability for Cobalt Strike that uses WinAPI and does not perform a fork & run. Screenshot saved to disk as a file.
Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.