Proof of Concepts

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

PowerShell Remote Download Cradle Generator & Obfuscator

articles

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at startup

Academic papers related to fuzzing, binary analysis, and exploit dev, which I want to read or have already read

Tool written in python3 to determine where the AV signature is located in a binary/payload

Lists of .NET Obfuscator (Free, Freemium, Paid and Open Source )

.NET deobfuscator and unpacker.

A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

Token Privilege Research

The cheat sheet about Java Deserialization vulnerabilities

Dump Azure AD Connect credentials for Azure AD and Active Directory

Python script that performs email address validation against Office 365 without submitting login attempts.

🔍 Mindmaps for threat hunting - work in progress.

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetN…

Ladon大型内网渗透扫描器，PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell，支持批量A段/B段/C段以及跨网段扫描，支持URL、主机、域名列表扫描等。网络资产探测32种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exc…

Identifies the bytes that Microsoft Defender flags on.

The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.

A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C

A free but powerful Windows kernel research tool.

Defeating Windows User Account Control

A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams

Issues has been disabled for these PoC's, as they are simply PoC, Public Domain and unsupported.

List of Awesome Red Teaming Resources

A collection of awesome penetration testing resources, tools and other shiny things

.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers