majid-derkaoui Goto Github PK

shellcode-encryptor

A simple shell code encryptor/decryptor/executor to bypass anti virus.

shellcodeloader

shellcodeloader

sherlock

PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.

shhhloader

SysWhispers Shellcode Loader (Work in Progress)

sigthief

Stealing Signatures and Making One Invalid Signature at a Time

sleepycrypt

A shellcode function to encrypt a running process image when sleeping.

smsbotbypass

SMSBotBypass : (OTP BOT) Bypass SMS verifications from Paypal, Instagram, Snapchat, Google, 3D Secure, and many others...

social-engineer-toolkit

The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.

sourcepoint

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

spacerunner

This tool enables the compilation of a C# program that will execute arbitrary PowerShell code, without launching PowerShell processes through the use of runspace.

spawn

Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks by spawning sacrificial process with Arbitrary Code Guard (ACG), BlockDll, and PPID spoofing.

spyder

Official repository for Spyder - The Scientific Python Development Environment

staykit

Cobalt Strike kit for Persistence

syscall-example

Using syscall to load shellcode, Evasion techniques

systemnightmare

Gives you instant SYSTEM command prompt on all supported and legacy versions of Windows

syswhispers2

AV/EDR evasion via direct system calls.

taowu-cobalt-strike

tgtdelegation

tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"

thefatrat

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV software protection .

toggle_token_privileges_bof

Syscall BOF to arbitrarily add/detract process token privilege rights.

tokyoneon.github.io

trustedpath-uacbypass-bof

Cobalt Strike beacon object file implementation for trusted path UAC bypass. The target executable will be called without involving "cmd.exe" by using DCOM object.

uac-bypass

Bypassing windows uac, however its an old approach/method but its still unpatched ¯\_(ツ)_/¯

unicorn

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.

usodllloader

Windows - Weaponizing privileged file writes with the Update Session Orchestrator service

vba-json

JSON conversion and parsing for VBA

venom

venom - C2 shellcode generator/compiler/handler

windowselevation

Windows Elevation(持续更新)

windowsmdm-lpe-0day

CVE-2021-24084 Windows Local Privilege Escalation Left officially unpatched since 2020. Hence, its still a zero day

winpwn

Automation for internal Windows Penetrationtest / AD-Security