sergant85 Goto Github PK

attackdetection

Attack Detection

awesome-cve-poc

✍️ A curated list of CVE PoCs.

badkernel

Full exploit of CVE-2016-6754(BadKernel) and slide of SyScan360 2016

blueborne

PoC scripts demonstrating the BlueBorne vulnerabilities

cloakify

CloakifyFactory - Data Exfiltration & Infiltration In Plain Sight; Convert any filetype into list of everyday strings; Evade DLP/MLS Devices; Defeat Data Whitelisting Controls; Social Engineering of Analysts; Evade AV Detection

cve-2016-0051

EoP (Win7) & BSoD (Win10) PoC for CVE-2016-0051 (MS-016)

cve-2017-0199

Exploit toolkit CVE-2017-0199 - v3.0 is a handy python script which provides a quick and effective way to exploit Microsoft RTF RCE. It could generate a malicious (Obfuscated) RTF file and deliver metasploit / meterpreter / other payload to victim without any complex configuration.

cve-2018-8120

CVE-2018-8120 Windows LPE exploit

cypher

Simple tool to automate adding shellcode to PE files

dns-shell

DNS-Shell is an interactive Shell over DNS channel

dnscat2

dr0p1t-framework

A framework that creates a dropper that bypass most AVs, some sandboxes and have some tricks ;)

east

Exploits and Security Tools Framework 2.0.0

equationgroupleak

Archive of leaked Equation Group materials

esteemaudit-metasploit

Porting for Metasploit of the infamous Esteemaudit RDP Exploit

fake_msxfs

Fake msxfs.dll to debug ATM trojans

fuzzbunch

NSA finest tool

gobuster

Directory/file & DNS busting tool written in Go

greatsct

The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool is intended for BOTH red and blue team.

gtfobins.github.io

Curated list of Unix binaries that can be exploited to bypass system security restrictions

hacoder.py

FUD Backdoor Generator / Remote Administration Tool

hashcat-legacy

hashcat-legacy

iis_exploit

Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <http://" in a PROPFIND request, as exploited in the wild in July or August 2016.

inmet

A multi-purpose meterpreter executable (inline, many transports, msfpayload)

insanity-framework

Generate Payloads and Control Remote Machines

invoke-metasploitpayload

Powershell script to download and kick off Metasploit payloads. Relies on the exploit/multi/scripts/web_delivery metasploit module.

invoke-psimage

Embeds a PowerShell script in the pixels of a PNG file and generates a oneliner to execute

k8tools

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke/zabbix)

koadic

Koadic C3 COM Command & Control - JScript RAT

labs

Vulnerability Labs for security analysis