This is your work, valued

Singapore

r0lan

Elite
@yeyintminthuhtut

Twitter @yeyint_mth

Awesome-Red-Teaming. List of Awesome Red Teaming Resources

8k

Awesome-Advanced-Windows-Exploitation-References. List of Awesome Advanced Windows Exploitation References

1.6k

Awesome-Study-Resources-for-Kernel-Hacking. Kernel Hacking study materials collection

108

Malleable-C2-Profiles-Collection. A collection of Malleable C2 profiles that work with Cobalt Strike 3.x.

30

Red-Teaming-Toolkit. A collection of open source and commercial tools that aid in red team operations.

11

atomic-red-team. Small and highly portable detection tests.

6

CobaltStrike-Toolset. Aggressor Script, Kits, Malleable C2 Profiles, External C2 and so on

5

IOS-Surface-Security-Checker. A very light scanner that replaces some features of MobSF framework

4

IntruderPayloads. A collection of Burpsuite Intruder payloads, fuzz lists and file uploads

4

malware-samples. A collection of malware samples caught by several honeypots i manage

4

SocialEngineeringPayloads. This is a collection of social engineering tricks and payloads being used for credential theft and spear phishing attacks.

4

cobalt-arsenal. My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+

3

awesome-web-hacking. A list of web application security

3

awesome-browser-exploit. awesome list of browser exploitation tutorials

3

eaphammer. Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.

3

Awesome-Hacking-1. A collection of various awesome lists for hackers, pentesters and security researchers

3

spoofing-office-macro. :fish: PoC of a VBA macro spawning a process with a spoofed parent and command line.

3

awesome-web-security. 🐶 A curated list of Web Security materials and resources.

3

btlejack. Bluetooth Low Energy Swiss-army knife

3

Red-Team-Infrastructure-Wiki. Wiki to collect Red Team infrastructure hardening resources

3

awesome-industrial-control-system-security. A curated list of resources related to Industrial Control System (ICS) security.

3

Infosec_Reference. Information Security Reference That Doesn't Suck

3

sandbox-attacksurface-analysis-tools. C#

3

LOLBAS-1. Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

2

Windows-Kernel-Explorer. A free but powerful Windows kernel research tool

2

Invoke-BSOD. For when you want a computer to be done - without admin!

2

Internal-Monologue. Internal Monologue Attack: Retrieving NTLM Hashes without Mimikatz

2

Invoke-WCMDump. PowerShell Script to Dump Windows Credentials from the Credential Manager

2

build-your-own-x. 🤓 Build your own (insert technology here)

2

TCP-Starvation. Python

2

attack-navigator. Web app that provides basic navigation and annotation of ATT&CK matrices

2

CVE-2017-11883. CVE-2017-11882 from https://github.com/embedi/CVE-2017-11882

2

cameradar. Cameradar hacks its way into RTSP CCTV cameras

2

RAI. Rapid Attack Infrastructure (RAI)

2

AggressorScripts-1. Various Aggressor Scripts I've Created.

2

aclpwn.py. Active Directory ACL exploitation with BloodHound

2

PowerLessShell. Run PowerShell command without invoking powershell.exe

2

meltdown. This repository contains several applications, demonstrating the Meltdown bug.

2

MoveKit. Cobalt Strike kit for Lateral Movement

2

evilginx2. Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

2

pe-sieve. Scans a given process, searching for the modules containing in-memory code modifications. When found, it dumps the modified PE.

2

Invoke-PSImage. Embeds a PowerShell script in the pixels of a PNG file and generates a oneliner to execute

2

AllTheThings. Includes 5 Known Application Whitelisting/ Application Control Bypass Techniques in One File.

2

DeviceGuardBypasses. A repository of some of my Windows 10 Device Guard Bypasses

2

C2K. Command and Control Kit. Assists with deploying Cobalt Strike team servers. All you need to download is the files.zip file which contains everything else.

2

redteam-plan. Issues to consider when planning a red team exercise.

2

HackVault. A container repository for my defensive/offensive hacks!

2

awesome-hacking. A curated list of awesome Hacking tutorials, tools and resources

2

DomainPasswordSpray. DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!

1

CatMyPhish. Search for categorized domain

1

docker-cve-search. Dockerized cve-search as a web app

1

powercloud. Deliver powershell paylods via DNS TXT records.

1

Robber. Robber is open source tool for finding executables prone to DLL hijacking

1

Aggressor-VYSEC. PowerShell

1

Noctilucent. Using TLS 1.3 to evade censors, bypass network defenses, and blend in with the noise

1

CVE-2020-0668. Use CVE-2020-0668 to perform an arbitrary privileged file move operation.

1

firmware_security_docs. HTML

1

EmbedInHTML. Embed and hide any file in an HTML file

1

Invoke-SilentCleanUpBypass. Bypass UAC fileless

1

LOLBAS. Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

1