Twitter @yeyint_mth
Awesome-Red-Teaming. List of Awesome Red Teaming Resources
8kAwesome-Advanced-Windows-Exploitation-References. List of Awesome Advanced Windows Exploitation References
1.6kAwesome-Study-Resources-for-Kernel-Hacking. Kernel Hacking study materials collection
108Malleable-C2-Profiles-Collection. A collection of Malleable C2 profiles that work with Cobalt Strike 3.x.
30Red-Teaming-Toolkit. A collection of open source and commercial tools that aid in red team operations.
11atomic-red-team. Small and highly portable detection tests.
6CobaltStrike-Toolset. Aggressor Script, Kits, Malleable C2 Profiles, External C2 and so on
5IOS-Surface-Security-Checker. A very light scanner that replaces some features of MobSF framework
4IntruderPayloads. A collection of Burpsuite Intruder payloads, fuzz lists and file uploads
4malware-samples. A collection of malware samples caught by several honeypots i manage
4SocialEngineeringPayloads. This is a collection of social engineering tricks and payloads being used for credential theft and spear phishing attacks.
4cobalt-arsenal. My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
3awesome-web-hacking. A list of web application security
3awesome-browser-exploit. awesome list of browser exploitation tutorials
3eaphammer. Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.
3Awesome-Hacking-1. A collection of various awesome lists for hackers, pentesters and security researchers
3spoofing-office-macro. :fish: PoC of a VBA macro spawning a process with a spoofed parent and command line.
3awesome-web-security. 🐶 A curated list of Web Security materials and resources.
3btlejack. Bluetooth Low Energy Swiss-army knife
3Red-Team-Infrastructure-Wiki. Wiki to collect Red Team infrastructure hardening resources
3awesome-industrial-control-system-security. A curated list of resources related to Industrial Control System (ICS) security.
3Infosec_Reference. Information Security Reference That Doesn't Suck
3sandbox-attacksurface-analysis-tools. C#
3LOLBAS-1. Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
2Windows-Kernel-Explorer. A free but powerful Windows kernel research tool
2Invoke-BSOD. For when you want a computer to be done - without admin!
2Internal-Monologue. Internal Monologue Attack: Retrieving NTLM Hashes without Mimikatz
2Invoke-WCMDump. PowerShell Script to Dump Windows Credentials from the Credential Manager
2build-your-own-x. 🤓 Build your own (insert technology here)
2TCP-Starvation. Python
2attack-navigator. Web app that provides basic navigation and annotation of ATT&CK matrices
2CVE-2017-11883. CVE-2017-11882 from https://github.com/embedi/CVE-2017-11882
2cameradar. Cameradar hacks its way into RTSP CCTV cameras
2RAI. Rapid Attack Infrastructure (RAI)
2AggressorScripts-1. Various Aggressor Scripts I've Created.
2aclpwn.py. Active Directory ACL exploitation with BloodHound
2PowerLessShell. Run PowerShell command without invoking powershell.exe
2meltdown. This repository contains several applications, demonstrating the Meltdown bug.
2MoveKit. Cobalt Strike kit for Lateral Movement
2evilginx2. Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
2pe-sieve. Scans a given process, searching for the modules containing in-memory code modifications. When found, it dumps the modified PE.
2Invoke-PSImage. Embeds a PowerShell script in the pixels of a PNG file and generates a oneliner to execute
2AllTheThings. Includes 5 Known Application Whitelisting/ Application Control Bypass Techniques in One File.
2DeviceGuardBypasses. A repository of some of my Windows 10 Device Guard Bypasses
2C2K. Command and Control Kit. Assists with deploying Cobalt Strike team servers. All you need to download is the files.zip file which contains everything else.
2redteam-plan. Issues to consider when planning a red team exercise.
2HackVault. A container repository for my defensive/offensive hacks!
2awesome-hacking. A curated list of awesome Hacking tutorials, tools and resources
2DomainPasswordSpray. DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
1CatMyPhish. Search for categorized domain
1docker-cve-search. Dockerized cve-search as a web app
1powercloud. Deliver powershell paylods via DNS TXT records.
1Robber. Robber is open source tool for finding executables prone to DLL hijacking
1Aggressor-VYSEC. PowerShell
1Noctilucent. Using TLS 1.3 to evade censors, bypass network defenses, and blend in with the noise
1CVE-2020-0668. Use CVE-2020-0668 to perform an arbitrary privileged file move operation.
1firmware_security_docs. HTML
1EmbedInHTML. Embed and hide any file in an HTML file
1Invoke-SilentCleanUpBypass. Bypass UAC fileless
1LOLBAS. Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
1