The Netherlands

Tijme Gommers

Elite
@tijme

Adversary Simulation - TIBER - ART - Red Teaming

dittobytes. Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE.

637

angularjs-csti-scanner. Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.

324

cmstplua-uac-bypass. Cobalt Strike Beacon Object File for bypassing UAC via the CMSTPLUA COM interface.

220

amd-ryzen-master-driver-v17-exploit. Cobalt Strike (CS) Beacon Object File (BOF) for kernel exploitation using AMD's Ryzen Master Driver (version 17).

158

not-your-average-web-crawler. A web crawler (for bug hunting) that gathers more than you can imagine.

149

relocatable. Boilerplate to develop raw and truly Position Independent Code (PIC).

116

kernel-mii. Cobalt Strike (CS) Beacon Object File (BOF) foundation for kernel exploitation using CVE-2021-21551.

85

nimplant-beacon-position-independent-c-code. A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.

67

kong-loader. Using Just In Time (JIT) instruction decryption, this shellcode loader ensures that only the currently executing instruction is visible in memory.

66

similar-request-excluder. A Burp Suite extension that automatically marks similar requests as 'out-of-scope'.

43

conferences. Some of the presentations, workshops, and labs I gave at public conferences.

35

reverse-engineering. This repository contains some of the executables that I've cracked.

35

binaries. A mirror of several precompiled standalone red-teaming tools.

19

latex-boilerplate-paper. A simple yet comprehensive LaTeX paper boilerplate (example) for academic homework.

12

blackout-reloaded. Cobalt Strike BOF to kill any anti-malware protected process using a new signed vulnerable driver.

7

blog-v2. My blog about cyber security, hacking, software engineering and much more.

6

forked-evilginx3-phishlets. This repository provides penetration testers and red teams with an extensive collection of dynamic phishing templates designed specifically for use with Evilginx3.

3

latex-boilerplate-presentation. A simple yet comprehensive LaTeX presentation boilerplate (example) for giving killer presentations.

3

blog-v1. My blog about cyber security, hacking, software engineering and much more.

2

grand-theft-filezilla. A tiny cross-platform Python script that steals saved & cached FileZilla credentials.

2

forked-sharphose. Asynchronous Password Spraying Tool in C# for Windows Environments

2

ivanti-cve-2023-35080-privilege-escalation-bof. Ivanti Secure Access (previously Pulse Secure) privilege escalation Cobalt Strike BOF (CVE-2023-35080).

2

forked-donut. Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

2

forked-sprayad. A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.

1

forked-lofl. Living Off the Foreign Land setup scripts

1

cxx-boilerplate. A simple yet comprehensive cross-platform c++ boilerplate to jumpstart your project.

1

forked-chrome-decrypter. Python script to decrypt saved Chrome usernames and passwords on windows

1

aptlib.h. A standard c-code library (`aptlib.h`) for Windows exploit & malware development.

1

forked-pink-panther. Windows x64 handcrafted token stealing kernel-mode shellcode

1

forked-pillow. The friendly PIL fork (Python Imaging Library)

1

forked-seatbelt. Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

1

forked-certify. Active Directory certificate abuse.

1
32
Apply