vulnserver. Vulnerable server used for learning software exploitation
1.1khlextend. Pure Python hash length extension module
135aws_url_signer. POC tool to create signed AWS API GET requests to bypass Guard Duty alerting of off-instance credential use via SSRF
59pentesting_stuff. A place to store my various pentesting related code thats too small/niche to justify its own repository, and a simple website with notes on pentesting.
40breakableflask. Simple vulnearable Flask web application
31ad_ldap_dumper. Security focused tool for dumping information from Active Directory via LDAP
19shellcode. Various shell code I have written
17CVE-2022-46164-poc. Basic POC exploit for CVE-2022-46164
12ssltest. SSL/TLS cipher testing tool
9offsecfeed. RSS feed of offensive security topics http://thegreycorner.com/offsecfeed/
7pygdbdis. Repository for pygdbdis gdb debugging extensions
6openwrt_vpn_control. Simple web interface to allow VPNs to be started and stopped easily
6BurpPythonGateway. Uses py4j to make Burp Extender internals available to Python code and interactive interpreters like iPython
6Red-Lambda. Leveraging AWS Lambda Function URLs for C2 Redirection
5stephenbradshaw. Github profile repository
5absentis. Burp extension for identifying files using names with common variations on existing filenames
4detectionlab_mod. Files related to my own DetectionLab deployment process
4CSharpInjectorLibrary. Reference injectable DLL in C# that provides a number of example methods for reproducing various TTPs
4OffensivePipeline. OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.
3CSIG. A Burp plugin that generates Intruder payloads for character set manipulation
3stephenbradshaw.github.io. Website
3ldapdomaindump. Active Directory information dumper via LDAP
3DonPAPI. Dumping DPAPI credz remotely
3keyctl. A Go-lang interface to the linux kernel keyring api
2impacket. Impacket is a collection of Python classes for working with network protocols.
2nray. nray distributed port scanner
2PowerShell-Suite. My musings with PowerShell
2dns-reverse-proxy. DNS Reverse Proxy
2GOAD. game of active directory - libvirt compatible fork
2letsencrypt_dns01_server. DNS Server for DNS01 authorisation
2inject. Minimal DLL-injection tool.
2retire-js. Burp/ZAP extension that integrate Retire.js repository to find vulnerable Javascript libraries.
2poseidon. Poseidon is a Golang agent targeting Linux and macOS
2espresso. An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
2charlotte. c++ fully undetected shellcode launcher ;)
2burpextensiontemplates. Template files for quickly creating Burp Suite extensions
2GCPCloudRunC2Forwarder. Simple POC for a GCP Cloud Run C2 Forwarder
2rlwrap-jdb. A rearguard effort to make jdb almost usable ; with some additional tweaks
1signxml. Python XML Signature library
1testing. Stuff
1Burp-Response-Handler. Python
1GCPAppEngineC2Forwarder. Simple POC for a GCP App Engine C2 Forwarder
1hydeout. A refreshed version of Hyde for Jekyll 3.x and 4.x
1aws_helpers. Some helper code for doing things in AWS
1python-paddingoracle. A portable, padding oracle exploit API
1Security-Research. Exploits written by the Rhino Security Labs team
1AzureC2PocDeployment. Azure Resource Manager templates for deploying a simple POC C2 environment using Sliver
1