This is your work, valued

London

netbiosX

Elite
@netbiosX

Director of Pentest Laboratories

Checklists. Red Teaming & Pentesting checklists for various engagements

2.7k

Default-Credentials. Default usernames and passwords for various systems (VoIP,IPMI,Oracle).

444

Digital-Signature-Hijack. Binaries, PowerShell scripts and information about Digital Signature Hijacking.

227

Pentest-Bookmarks. Database of websites for penetration testing

184

AMSI-Provider. A fake AMSI Provider which can be used for persistence.

156

GhostLoader. GhostLoader - AppDomainManager - Injection - 攻壳机动队

54

CheatSheets. Commands to perform various activities related to penetration testing and red teaming

21

iPurpleTeam. Frameworks, Methodologies, Detection Rules and Tooling for establishing a Purple Team program.

12

Red-Teaming-Toolkit. A collection of open source and commercial tools that aid in red team operations.

11

Social-Engineering-Payloads. Collection of generic social engineering payloads

11

Red-Team-CheatSheets. The website version of CheatSheets

10

Execute-CSharp-From-XSLT-TEST. XSLT

8

ApplicationWhitelistBypassTechniques. A Catalog of Application Whitelisting Bypass Techniques

8

Pentest-Scripts. Scripts that can be used in penetration testing engagements.

7

awesome-sec-talks. A collected list of awesome security talks

7

Credential-Dumping. This cheatsheet is aimed at the Red Teamers to help them understand the fundamentals of Credential Dumping (Sub Technique of Credential Access) with examples. There are multiple ways to perform the same tasks

6

subTee-gits-backups. subTee gists code backups

5

Red-Team-Infrastructure-Wiki. Wiki to collect Red Team infrastructure hardening resources

5

Shellcode-Via-HTA. How To Execute Shellcode via HTA

5

AD-control-paths. Active Directory Control Paths auditing and graphing tools

4

lazykatz. Lazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software.

4

netbiosX. Config files for my GitHub profile.

4

StegoKatz. Mimikatz encoded into various files

4

Aggressor-scripts. Aggressor scripts I've made for Cobalt Strike

4

Checklists-Website. The website version for checklists project

4

Interceptor. PowerShell HTTP(s) Intercepting Proxy

4

DotNetToJScript. A tool to create a JScript file which loads a .NET v2 assembly from memory.

3

PowerSploit. PowerSploit - A PowerShell Post-Exploitation Framework

3

Evil. Executes Mixed .NET and Native DLL via regsvr32

3

Sim. C# User Simulation

3

RogueMMC. Execute Shellcode And Other Goodies From MMC

3

MaliciousMacroGenerator. Malicious Macro Generator

3

AllTheThings. Includes 5 Known Application Whitelisting/ Application Control Bypass Techniques in One File.

3

nishang. Nishang - PowerShell for penetration testing and offensive security.

3

hackerEnv. Shell

3

RegistrationFreeCOM. Inject DLL Prototype using Microsoft.Windows.ACTCTX COM Object

3

PoshRat. PowerShell Reverse HTTPs Shell

3

gcat. A fully featured backdoor that uses Gmail as a C&C server

3

windows-operating-system-archaeology. windows-operating-system-archaeology @Enigma0x3 @subTee

3

EvilWMIProvider. Installs And Executes Shellcode

3

Misc-PowerShell-Stuff. random powershell goodness

3

HatDBG. Minimal WIN32 Debugger in powershell

2

SCTPersistence. Create COM Objects backed by Scripts, not DLLs

2

Utils. Execute Mimikatz In Memory - InstallUtil, Regsvcs, Regasm

2

MimikatzLite. Minimal MimiKatz One Executable... All credits to Benjamin Delpy @gentilkiwi

2

DerbyCon2016. Code Samples and Slides From DerbyCon 2016

2

AppInitGlobalHooks-Mimikatz. Hide Mimikatz From Process Lists

1

kernelpop. kernel privilege escalation enumeration and exploitation framework

1

ClickOnceKatz. Execute Mimikatz Inside of ClickOnce Application

1