Seattle, WA

Dwight Hohnstein

Elite
@djhohnstein

IBM X-Force Red. Kali Contributor.

SharpChromium. .NET 4.0 CLR Project to retrieve Chromium data, such as cookies, history and saved logins.

759

SharpWeb. .NET 2.0 CLR project to retrieve saved browser credentials from Google Chrome, Mozilla Firefox and Microsoft Internet Explorer/Edge.

539

SharpShares. Enumerate all network shares in the current domain. Also, can resolve names to IP addresses.

302

WireTap. .NET 4.0 Project to interact with video, audio and keyboard hardware.

219

EventLogParser. Parse PowerShell and Security event logs for sensitive information.

128

SharpLogger. Keylogger written in C#

125

SharpSearch. Search files for extensions as well as text within.

122

CSharpSetThreadContext. C# Shellcode Runner to execute shellcode via CreateRemoteThread and SetThreadContext to evade Get-InjectedThread

120

cliProxy. Proxy Unix applications in the terminal

117

ScatterBrain. Suite of Shellcode Running Utilities

113

1PasswordSuite. Utilities to extract secrets from 1Password

109

.NET-Profiler-DLL-Hijack. Implementation of the .NET Profiler DLL hijack in C#

99

ProcessReimaging. Process reimaging proof of concept code

96

KittyLitter. Credential Dumper

82

macos_shell_memory. Execute MachO binaries in memory using CGo

80

TSMSISrv_poc. C# POC code for the SessionEnv dll hijack by utilizing called functions of TSMSISrv.dll

63

wlbsctrl_poc. C++ POC code for the wlbsctrl.dll hijack on IKEEXT

56

SharpSC. Simple .NET assembly to interact with services.

43

HookDetector. Playing with PE's and Building Structures by Hand

22

SharpScreenshot. Dead simple C# project to take a screenshot.

20

CSharpCreateThreadExample. C# code to run PIC using CreateThread

17

librarian. Shared library loading application for Linux written in Go.

16

spfwalker. Tool to walk SPF records for relevant domain names and Whois information.

16

GitSecrets. Script to help enumerate and dig through Github and Github Enterprise installations.

15

SharpEdge. C# Implementation of Get-VaultCredential

14

gosharedlib. Shared library example to be loaded by the github.com/djhohnstein/librarian application

10

ghidorah. Golang Brute Force Tool

9

MailSniper. MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.

8

portscanner. Golang portscanning tool

5

r77-rootkit. Ring 3 Rootkit DLL

5

CPPWebClient. Web client to wrap GET and POST requests in C++

4

essdp_fork. Fork of Evil SSDP from InitString. Adds base64 authentication, redirect urls and customizable realm options for internal phishing.

4

self-morphing-csharp-binary. C# binary that mutates its own code, encrypts and obfuscates itself on runtime

4

VaultBreaker. A toolset designed for attacks against common password managers.

4

localGPT. Chat with your documents on your local device using GPT models. No data leaves your device and 100% private.

4

polarbearrepo. C++

3

ScheduleRunner. A C# tool with more flexibility to customize scheduled task for both persistence and lateral movement in red team operation

3

SharpNeedle. Inject C# code into a running process

3

PowerShell-Book-Labs. PowerShell labs from various books

2

DerbyCon2019. Code & Slides For DerbyCon 2019

2

all-MiniLM-L6-v2-tfjs. all-MiniLM-L6-v2-tfjs

2

evilrdp. Python

2

Priv2Admin. Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.

2

MSBuildAPICaller. MSBuild Without MSBuild.exe

2

SCShell. Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

2

Vuln-Server-Exploits. Exploits for Vuln Server (http://www.thegreycorner.com/2010/12/introducing-vulnserver.html)

1

PowerShell. NetSPI PowerShell Scripts

1
47
Apply