This is your work, valued

0x09AL

Elite
@0x09AL

RdpThief. Extracting Clear Text Passwords from mstsc.exe using API Hooking.

1.5k

raven. raven is a Linkedin information gathering tool that can be used by pentesters to gather information about an organization employees using Linkedin.

798

IIS-Raid. A native backdoor module for Microsoft IIS (Internet Information Services)

555

WordSteal. This script will create a POC that will steal NTML hashes from a remote computer. Do not use this for illegal purposes.The author does not keep responsibility for any illegal action you do.

253

DNS-Persist. DNS-Persist is a post-exploitation agent which uses DNS for command and control.

208

CVE-2018-8174-msf. CVE-2018-8174 - VBScript memory corruption exploit.

168

DropboxC2C. DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.

153

go-deliver. Go-deliver is a payload delivery tool coded in Go.

114

Browser-C2. Post Exploitation agent which uses a browser to do C2 operations.

103

CVE-2017-11882-metasploit. This is a Metasploit module which exploits CVE-2017-11882 using the POC released here : https://embedi.com/blog/skeleton-closet-ms-office-vulnerability-you-didnt-know-about.

98

AzureCLI-Extractor. A tool to extract and abuse access tokens from AzureCLI for bypassing 2FA/MFA.

47

RsaTokenExtractor. A simple toolkit on extracting RSA Software Tokens from RSA SecureID

42

my-exploits. My public exploit collection.

31

Infosec_Reference. An Information Security Reference That Doesn't Suck

8

SauronEye. Search tool to find specific files containing specific words, i.e. files containing passwords..

5

evilginx2. Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

5

windows-kernel-exploits. windows-kernel-exploits Windows平台提权漏洞集合

4

AD-Attack-Defense. Active Directory Security For Red & Blue Team

4

Pentest-and-Development-Tips. A collection of pentest and development tips

4

StudentResources. A repository for cybersecurity students

3

CVE-2019-0604. cve-2019-0604 SharePoint RCE exploit

3

CVE-2018-8120. CVE-2018-8120 Windows LPE exploit

3

MaliciousMacroGenerator. Malicious Macro Generator

3

Awesome-Advanced-Windows-Exploitation-References. List of Awesome Advanced Windows Exploitation References

3

smbdoor. kernel backdoor via registering a malicious SMB handler

3

blueborne. Contains PoC scripts demonstrating the BlueBorne vulnerabilities

3

sRDI. Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode

3

CVE-2018-8897. Arbitrary code execution with kernel privileges using CVE-2018-8897.

3

Inveigh. Inveigh is a Windows PowerShell LLMNR/mDNS/NBNS spoofer/man-in-the-middle tool

3

awesome-cve-poc. ✍️ A curated list of CVE PoCs.

3

OneLogicalMyth_Shell. A HTA shell to assist with breakout assessments.

2

CVE-2020. 2020一些漏洞

2

PayloadsAllTheThings. A list of useful payloads and bypass for Web Application Security and Pentest/CTF

2

donut. Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies from memory and runs them with parameters

2

Whisker. Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.

2

cve-2019-1040-scanner. Python

2

PrivExchange. Exchange your privileges for Domain Admin privs by abusing Exchange

2

0x09al.github.io. Ruby

2

Windows-Hunting.

2

RCEvil.NET. C#

2

vmware_vcenter_cve_2020_3952. Exploit for CVE-2020-3952 in vCenter 6.7

2

recaptcha-phish. Phishing with a fake reCAPTCHA

2

ad-ldap-enum. An LDAP based Active Directory user and group enumeration tool

2

Awesome-Vulnerability-Research. 🦄 A curated list of the awesome resources about the Vulnerability Research

2

ctf. Python

2

SharpHound. The BloodHound C# Ingestor

2

PowerPriv. A Powershell implementation of PrivExchange designed to run under the current user's context

2

Blacklist3r. project-blacklist3r

2

fracker. PHP function tracker

2

labs. Vulnerability Labs for security analysis

2

CTF-Challenge. Simple challenge.

1

go-agent. New Relic Go Agent

1

ccat. Cisco Config Analysis Tool

1

jdbc-backdoor. A fake JDBC driver that allows OS command execution.

1

DecryptTeamViewer. Enumerate and decrypt TeamViewer credentials from Windows registry

1

C2-Tool-Collection. A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

1

CVE-2018-8581. CVE-2018-8581 | Microsoft Exchange Server Elevation of Privilege Vulnerability

1