This is your work, valued

Australia

Stephen Bradshaw

Expert
@stephenbradshaw

Offensive Security professional

vulnserver. Vulnerable server used for learning software exploitation

1.1k

hlextend. Pure Python hash length extension module

135

aws_url_signer. POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF

59

pentesting_stuff. A place to store my various pentesting related code thats too small/niche to justify its own repository, and a simple website with notes on pentesting.

40

breakableflask. Simple vulnearable Flask web application

31

ad_ldap_dumper. Security focused tool for dumping information from Active Directory via LDAP

19

shellcode. Various shell code I have written

17

CVE-2022-46164-poc. Basic POC exploit for CVE-2022-46164

12

ssltest. SSL/TLS cipher testing tool

9

offsecfeed. RSS feed of offensive security topics http://thegreycorner.com/offsecfeed/

7

pygdbdis. Repository for pygdbdis gdb debugging extensions

6

openwrt_vpn_control. Simple web interface to allow VPNs to be started and stopped easily

6

BurpPythonGateway. Uses py4j to make Burp Extender internals available to Python code and interactive interpreters like iPython

6

Red-Lambda. Leveraging AWS Lambda Function URLs for C2 Redirection

5

stephenbradshaw. Github profile repository

5

absentis. Burp extension for identifying files using names with common variations on existing filenames

4

detectionlab_mod. Files related to my own DetectionLab deployment process

4

CSharpInjectorLibrary. Reference injectable DLL in C# that provides a number of example methods for reproducing various TTPs

4

OffensivePipeline. OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.

3

CSIG. A Burp plugin that generates Intruder payloads for character set manipulation

3

stephenbradshaw.github.io. Website

3

ldapdomaindump. Active Directory information dumper via LDAP

3

DonPAPI. Dumping DPAPI credz remotely

3

keyctl. A Go-lang interface to the linux kernel keyring api

2

impacket. Impacket is a collection of Python classes for working with network protocols.

2

nray. nray distributed port scanner

2

PowerShell-Suite. My musings with PowerShell

2

dns-reverse-proxy. DNS Reverse Proxy

2

GOAD. game of active directory - libvirt compatible fork

2

letsencrypt_dns01_server. DNS Server for DNS01 authorisation

2

inject. Minimal DLL-injection tool.

2

retire-js. Burp/ZAP extension that integrate Retire.js repository to find vulnerable Javascript libraries.

2

poseidon. Poseidon is a Golang agent targeting Linux and macOS

2

espresso. An extension for BurpSuite that highlights SSO messages in Burp's proxy window..

2

charlotte. c++ fully undetected shellcode launcher ;)

2

burpextensiontemplates. Template files for quickly creating Burp Suite extensions

2

GCPCloudRunC2Forwarder. Simple POC for a GCP Cloud Run C2 Forwarder

2

rlwrap-jdb. A rearguard effort to make jdb almost usable ; with some additional tweaks

1

signxml. Python XML Signature library

1

testing. Stuff

1

Burp-Response-Handler. Python

1

GCPAppEngineC2Forwarder. Simple POC for a GCP App Engine C2 Forwarder

1

hydeout. A refreshed version of Hyde for Jekyll 3.x and 4.x

1

aws_helpers. Some helper code for doing things in AWS

1

python-paddingoracle. A portable, padding oracle exploit API

1

Security-Research. Exploits written by the Rhino Security Labs team

1

AzureC2PocDeployment. Azure Resource Manager templates for deploying a simple POC C2 environment using Sliver

1