0xajstrike Goto Github PK

slib

SLib is a sandbox evasion library that implements some of the checks from https://evasions.checkpoint.com in C#

slimjim

A set of scripts for managing an Ethernet Person-in-the-Middle device, a la Duckwall "A Bridge Too Far"

sliver

Adversary Emulation Framework

smap

a drop-in replacement for Nmap powered by shodan.io

smartbrute

Password spraying and bruteforcing tool for Active Directory Domain Services

smblibrary

Free, Open Source, User-Mode SMB 1.0/CIFS, SMB 2.0, SMB 2.1 and SMB 3.0 server and client library

snd_amsi

Start new PowerShell without etw and amsi in pure nim

sneaky_proxy

Hiding your infrastructure from the boys in blue.

spfabuse

SPF are not as strong as you may think. Red Team tool to send email on behalf of your target corp

spoofing-office-macro

:fish: PoC of a VBA macro spawning a process with a spoofed parent and command line.

sprayingtoolkit

Scripts to make password spraying attacks against Lync/S4B & OWA a lot quicker, less painful and more efficient

spyguard

SpyGuard is a forked and enhanced version of TinyCheck. SpyGuard's main objective is to detect signs of compromise by monitoring network flows transmitted by a device.

srdi

Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode

standalone_scripts

Various standalone scripts

sweetpotato

Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019

sylantstrike

Simple EDR implementation to demonstrate bypass

syswhispers2bof

Script to use SysWhispers2 direct system calls from Cobalt Strike BOFs

tangledwinexec

C# PoCs for investigation of Windows process execution techniques investigation

thephish

ThePhish: an automated phishing email analysis tool

tokenuniverse

/* Under development */ An advanced tool for working with access tokens and Windows security policy.

torat

ToRat is a Remote Administation tool written in Go using Tor as a transport mechanism and RPC for communication

tymspecial

SysWhispers integrated shellcode loader w/ ETW patching, anti-sandboxing, & spoofed code signing certificates

uhoh365

A script that can see if an email address is valid in Office365 (user/email enumeration). This does not perform any login attempts, is unthrottled, and is incredibly useful for social engineering assessments to find which emails exist and which don't.

undefender

Killing your preferred antimalware by abusing native symbolic links and NT paths.

unredacter

Never ever ever use pixelation as a redaction technique

user-behavior-mapping-tool

vortex

VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit

vulnerabilidades

wambam

Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post

warhorse