Cas van Cooten's Projects
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
Python based BloodHound data importer
A Python based ingestor for BloodHound
A Bash script and Docker image for Bug Bounty reconnaissance. Intended for headless use.
Gotta have a cool profile y'all
https://casvancooten.com
Terraform + Ansible deployment scripts for an Active Directory lab environment.
A COFF loader made in Rust
A collection of presentations and other contributions I have made to conferences.
Search for potential frontable domains
POC to replicate the full 'Follina' Office RCE vulnerability for testing purposes
A PoC package for hosting the CLR and executing .NET from Go
Home Assistant smart home configuration
A script for automatically retrieving Google Home API keys into Home Assistant
A Flask webhook-like wrapper to integrate IDΓ
SEN desk control into Home Assistant. Based on Python component by Rhyst.
just a joke, not worth looking at π
A workshop about Malware Development
A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)
Nim-based assembly packer and shellcode loader for opsec & profit
A light-weight first-stage C2 implant written in Nim.
Markdown reporting templates and Pandoc styling references to generate sleek reports for OSCP/PWK with little effort.
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
Public wiki site