klezVirus

Elite
@klezVirus

Lucky husband, proud father, and security researcher

inceptor. Template-Driven AV/EDR Evasion Framework

1.8k

SysWhispers3. SysWhispers on Steroids - AV/EDR evasion via direct system calls.

1.6k

SilentMoonwalk. PoC Implementation of a fully dynamic call stack spoofer

971

CVE-2021-40444. CVE-2021-40444 - Fully Weaponized Microsoft Office Word RCE Exploit

827

CheeseTools. Self-developed tools for Lateral Movement/Code Execution

723

chameleon. PowerShell Script Obfuscator

604

vortex. VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit

450

DriverJack. Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths

360

CandyPotato. Pure C++, weaponized, fully automated implementation of RottenPotatoNG

313

RAIWhateverTrigger. Local SYSTEM auth trigger for relaying - X

157

SharpSelfDelete. C# implementation of the research by @jonaslyk and the drafted PoC from @LloydLabs

150

NimlineWhispers3. A tool for converting SysWhispers3 syscalls for use with Nim projects

148

RpcProxyInvoke. Simple POC library to execute arbitrary calls proxying them via NdrServerCall2 or similar

138

klezVirus.github.io. CyberSec Blog

99

SharpLdapRelayScan. C# Port of LdapRelayScan

95

koppeling-p. Adaptive DLL hijacking / dynamic export forwarding - EAT preserve

79

evilginx-collection. Public repo of some woking evilginx phishlets

42

obfuscator. ollvm, based on llvm-clang 5.0.2, 6.0.1, 7.0.1, 8.0, 9.0, 9.0.1

19

DCKFinder. Dangling COM Keys Finder

17

AIDA64DRIVER-EoP. AIDA64DRIVER Elevation of Privilege Vulnerability

17

titanldr-ng. A newer iteration of TitanLdr with some newer hooks, and design. A generic user defined reflective DLL I built to prove a point to Mudge years ago.

15

LoGiC.NET. A more advanced free and open .NET obfuscator using dnlib.

10

codegrepper. Pure python, self-contained, silly implementation of a SAST tool

9

AsStrongAsFuck. A console obfuscator for .NET assemblies.

9

deser-node. NodeJS Deserialization Payload Generator

8

HWSyscalls. HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.

8

LdrLibraryEx. A small x64 library to load dll's into memory.

7

msf-revhttp-gen. Little utility to facilitate Metasploit Reverse HTTP Payloads

7

faceless. Faceless - Simple Tool for Text-File Anonymization

7

mapt-run. Simple script to setup a local hosted network for Mobile Application Penetration Testing

6

nmap-report. A simple tool that can be use to extract usful information from a nmap scan

6

BOFRyptor. Assembly

6

LazySign. Create fake certs for binaries using windows binaries and the power of bat files

5

CryptoCheck. NIST-CAVS Extended - Encryption Auto Testing Toolkit

5

nx_reporter. Rapid7 Nexpose template-based report generator

4

overlord. Overlord - Red Teaming Infrastructure Automation

4

angryorchard. A kernel vulnerability used to achieve arbitrary read-write on Windows prior to July 2022

4

muts-opt-encoder. Independent implementation of the optimized SUB-Encoder

4

XSStrike. Most advanced XSS scanner.

4

deser-py. Python Deserialization Payload Generator

4

klezVirus. Temporary unavailable...

4

camanager. A simple CA management utility for generating certificates based on a local CA

3

deser-ruby. Ruby Deserialization Payload Generator

3

HandleKatz. PIC lsass dumper using cloned handles

3

donut. Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

3

ADCSPwnNG. A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.

3

oldrivrs. some old drivers and misc crap from a while ago

2

MalMemDetect. Detect strange memory regions and DLLs

2

sam-the-admin. Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

2

SylantStrike. Simple EDR implementation to demonstrate bypass

2

trevorc2. TrevorC2 is a legitimate website (browsable) that tunnels client/server communications for covert command execution.

2

SharpHellsGate. C# Implementation of the Hell's Gate VX Technique

1

GadgetToJScript. A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.

1
53
Apply