This is your work, valued

Puerto Rico

Carlos Perez

Elite
@darkoperator

dnsrecon. DNS Enumeration Script

3k

Posh-SSH. PowerShell Module for automating tasks on remote systems using SSH

1.1k

Metasploit-Plugins. Plugins for Metasploit Framework

496

Posh-SecMod. PowerShell Module with Security cmdlets for security work

449

powershell_scripts. Powershell Scripts

245

Posh-Sysmon. PowerShell module for creating and managing Sysinternals Sysmon config files.

213

Meterpreter-Scripts. Meterpreter Scripts that I'm working on

171

Posh-Shodan. PowerShell Module to interact with the Shodan service

148

vscode-language-aggressor. Cobalt Strike Aggressor extension for Visual Studio Code

139

Posh-VirusTotal. PowerShell Module to interact with VirusTotal

124

DEFCON25_PS_Workshop. Materials of Workshop presented at DEFCON 25

107

Veil-PowerView. Veil-PowerView is a powershell tool to gain network situational awareness on Windows domains.

69

vscode-sysmon. Visual Studio Code Microsoft Sysinternal Sysmon configuration file extension.

54

ADAudit. Windows PowerShell module to help in the auditing of Active Directory environments.

51

SysmonLinux.Util. PowerShell Module for parsing logs generated by Sysinternals Sysmon for Linux

36

pyforensics. Collection of single use scripts I worte for windows forensics

27

Presentations. Presentation Slides

26

Nessus-Bridge-for-Metasploit. nessus plugin for metasploit to connect to a nessus server

23

Posh-Metasploit. PowerShell module to automate via XMLRPC a remote Metasploit server.

15

ThreatHunter-Playbook. A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns by leveraging Windows Events and Sysmon logs.

12

Posh-Tweet. PowerShell Module for intearcting with Twitter

12

MDNSRecon. Script for Ubuntu/BackTrack for MSDN Enumeration using Avahi-Utils

11

EventHunt. PowerShell

10

Posh-OpenPGP. PowerShell Module for automating actions using OpenPGP

9

ThreatHunting. An informational repo about hunting for adversaries in your IT environment.

9

PowerShell-AD-Recon. PowerShell Scripts I find useful

7

Agressor-Scripts. C#

7

PowerSploit. PowerSploit - A PowerShell Post-Exploitation Framework

7

Nessus-V2-Parser. Parser for .nessus v2 xml files to various formats.

6

windows-event-forwarding. A repository for using windows event forwarding for incident detection and response

5

Posh-NVS. PowerShell Module for the Nessus Vulnerability Scanner

5

GetAuditPol. Example of getting audit policy using C++

5

SIMP. Information Repository for SIMP

5

PowerForensics. PowerShell - Live disk forensics platform

5

OctoPS. PowerShell Core module for automating tasks against the OctoPrint API.

5

ruby-nessus. Ruby-Nessus is a ruby interface for the popular Nessus vulnerability scanner.

5

tap. The TrustedSec Attack Platform is a reliable method for droppers on an infrastructure in order to ensure established connections to an organization.

5

VI-ToolBox. Collection of PowerCLI functions in module format that I use in my day to day operations of a VMware Infrastructure

4

WMI_Persistence. A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics

4

Event-Forwarding-Guidance. NSA Information Assurance guidance for Windows Event Forwarding and Windows Event Log monitoring. iadgov

4

defcon_27_windbg_workshop. DEFCON 27 workshop - Modern Debugging with WinDbg Preview

4

golang-dns. DNS library in Go

4

defcon27_csharp_workshop. Writing custom backdoor payloads with C# - Defcon 27

3

Registry. Full featured, offline Registry parser in C#

3

ptf. The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.

3

sysmon-modular. A repository of sysmon configuration modules

3

AllTheThings. Includes 5 Known Application Whitelisting/ Application Control Bypass Techniques in One File.

3

IPHelper. C# example for building a PowerShell module

3

unicorn. Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.

3

Windows-Auditing-Guide.

2

Generate-Macro. This Powershell script will generate a malicious Microsoft Office document with a specified payload and persistence method.

2

Klipper-Macro-Scheduler. Schedule Klipper macros with flexible timing options

1

ShellcodeStdio. A mini-framework for easily writing compiler optimized position independent x86 shellcode for windows platforms.

1