r1cksec

GitHub - toneillcodes/DPAPI-BOF: A collection of DPAPI hunting and parsing BOFs A collection of DPAPI hunting and parsing BOFs. Contribute to toneillcodes/DPAPI-BOF development by creating an account on GitHub.

A collection of DPAPI hunting and parsing BOFs

github.com/toneillcodes...

#infosec #cybersecurity #redteam #pentest #windows

GitHub - r1cksec/cheatsheets: Collection of knowledge about information security Collection of knowledge about information security - r1cksec/cheatsheets

New cheatsheets pushed

github.com/r1cksec/chea...

#infosec #cybersecurity #redteam #pentest #threatintel #malware #dfir #bugbounty #opensource

GitHub - m0x41nos/TimeAfterFree: PHP 8 Sandbox Escape PHP 8 Sandbox Escape. Contribute to m0x41nos/TimeAfterFree development by creating an account on GitHub.

PHP 8 sandbox escape PoC demonstrating a disable_functions bypass on Unix-like systems.

github.com/m0x41nos/Tim...

#infosec #cybersecurity #redteam #pentest #php

GitHub - V-i-x-x/WIFIAIR-C2-Channel: Command channel that uses Wi-Fi Beacons as a unidirectional C2 transport Command channel that uses Wi-Fi Beacons as a unidirectional C2 transport - V-i-x-x/WIFIAIR-C2-Channel

Command channel that uses Wi-Fi Beacons as a unidirectional C2 transport

github.com/V-i-x-x/WIFI...

#infosec #cybersecurity #redteam #pentest

NTLM.PW - Hash to password lookup Instantly look up NTLM hashes and resolve them to plaintext passwords using our database with 8B+ entries.

This database has 8.726.485.619 unique hashes (NT, LM, MD5, SHA1, SHA256)

ntlm.pw

#infosec #cybersecurity #redteam #pentest

GitHub - 0xbbuddha/notion: Notion C2 Profile for Mythic Notion C2 Profile for Mythic. Contribute to 0xbbuddha/notion development by creating an account on GitHub.

A Mythic C2 profile that uses Notion as a covert communication channel.

github.com/0xbbuddha/no...

#infosec #cybersecurity #redteam #pentest #opensource

GitHub - dievus/ADPulse: Active Directory Vulnerability Scanner Active Directory Vulnerability Scanner. Contribute to dievus/ADPulse development by creating an account on GitHub.

ADPulse is an open-source Active Directory security auditing tool that connects to a domain controller via LDAP(S), runs 35 automated security checks, and produces detailed reports in console, JSON, and HTML formats.

github.com/dievus/ADPulse

#infosec #cybersecurity #pentest #opensource

GitHub - Maldev-Academy/PrefetchFileParser: A lightweight Windows Prefetch file parser to extract programs' execution history A lightweight Windows Prefetch file parser to extract programs' execution history - Maldev-Academy/PrefetchFileParser

A lightweight Windows Prefetch file parser to extract programs execution history

github.com/Maldev-Acade...

#infosec #cybersecurity #redteam #pentest #opensource

GitHub - rbnroot/CAPSlock Contribute to rbnroot/CAPSlock development by creating an account on GitHub.

CAPSlock is an offline Conditional Access (CA) analysis tool built on top of a roadrecon database

github.com/rbnroot/CAPS...

#infosec #cybersecurity #redteam #pentest #cloud #azure

Tool that gathers a customizable set of ETW telemetry and generates user-defined detections

github.com/HullaBrian/E...

#infosec #cybersecurity #threatintel #dfir

Dissecting CrashFix: KongTuke's New Toy | Huntress Fake ad blocker crashes your browser, then offers a "fix." Go inside KongTuke's CrashFix campaign, from malicious extension to ModeloRAT for VIP targets.

A new ClickFix variant dubbed "CrashFix" that intentionally crashes the browser then baits users into running malicious commands

www.huntress.com/blog/malicio...

#infosec #cybersecurity #threatintel #phishing #malware #redteam

GitPhish is a comprehensive security research tool designed to perform GitHub's device code authentication flow.

github.com/praetorian-i...

#infosec #cybersecurity #redteam #pentest #phishing

Kubernetes Remote Code Execution Via Nodes/Proxy GET Permission An authorization bypass in Kubernetes RBAC allows for nodes/proxy GET permissions to execute commands in any Pod in the cluster.

This post describes how to execute code on every Pod in many Kubernetes clusters when using a service account with nodes/proxy GET permissions

grahamhelton.com/blog/nodes-p...

#infosec #cybersecurity #redteam #pentest

GitHub - dwisiswant0/sandboxec: A lightweight command sandbox for Linux, secure-by-default, built on Landlock. A lightweight command sandbox for Linux, secure-by-default, built on Landlock. - dwisiswant0/sandboxec

A lightweight command sandbox for Linux, secure-by-default, built on Landlock

github.com/dwisiswant0/...

#infosec #cybersecurity #pentest #threatintel

GitHub - darkoperator/mimikatz-missing-manual: The Mimikatz Missing Manual The Mimikatz Missing Manual. Contribute to darkoperator/mimikatz-missing-manual development by creating an account on GitHub.

The Mimikatz Missing Manual (a deep-dive guide to Windows Identity, Kerberos, and PKI Research)

github.com/darkoperator...

#infosec #cybersecurity #redteam #pentest

An entertaining post on how TaskHound was refactored to fix real‑world issues

r0bit.io/posts/taskho...

#infosec #cybersecurity #redteam #pentest

GitHub - wietze/lnk-it-up: Project for generating and identifying deceptive LNK files. Project for generating and identifying deceptive LNK files. - wietze/lnk-it-up

Project for generating and identifying deceptive LNK files

github.com/wietze/lnk-i...

#infosec #cybersecurity #redteam #phishing #opensource

GitHub - DotNetRussell/BloodBash: A Bloodhound alternative. BloodBash will ingest the same files bloodhound does but no server is required to use this tool. It's great for quick AD enumeration. A Bloodhound alternative. BloodBash will ingest the same files bloodhound does but no server is required to use this tool. It's great for quick AD enumeration. - DotNetRussell/BloodBash

A Bloodhound alternative. BloodBash will ingest the same files bloodhound does but no server is required to use this tool. It's great for quick AD enumeration

github.com/DotNetRussel...

#infosec #cybersecurity #redteam #pentest #opensource

GitHub - attacksurge/ax: The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbitrary binaries and scripts using any of... The Distributed Scanning Framework for Everybody! Control Your Infrastructure, Scale Your Scanning-On Your Terms. Easily distribute arbitrary binaries and scripts using any of our nine supported cl...

Ax Framework is a free and open-source tool to efficiently operate in multiple cloud environments. It helps build and deploy repeatable infrastructure tailored for offensive security purposes

github.com/attacksurge/ax

#infosec #cybersecurity #redteam #pentest #opensource

GitHub - RedTeamPentesting/keycred: Generate and Manage KeyCredentialLinks Generate and Manage KeyCredentialLinks. Contribute to RedTeamPentesting/keycred development by creating an account on GitHub.

The project also contains a tool to manipulate the msDS-KeyCredentialLink LDAP attribute in order to register KeyCredentialLinks in Active Directory environments

github.com/RedTeamPente...

#infosec #cybersecurity #redteam #pentest #opensource

GitHub - zh54321/SharePointDumper: PowerShell SharePoint extraction + auditing tool for red/blue/purple teams. Enumerates all SharePoint sites/drives a user can access via Microsoft Graph, recursively... PowerShell SharePoint extraction + auditing tool for red/blue/purple teams. Enumerates all SharePoint sites/drives a user can access via Microsoft Graph, recursively downloads files, and logs every...

A powershell tool to enumerate all SharePoint sites/drives that a user can access via Microsoft Graph, recursively downloads files, and logs every Graph/SharePoint HTTP request for SIEM correlation

github.com/zh54321/Shar...

#infosec #cybersecurity #redteam #pentest #cloud

GitHub - mandiant/cleanldap Contribute to mandiant/cleanldap development by creating an account on GitHub.

BOF to perform stealthy LDAP queries over AD WS

github.com/mandiant/cle...

#infosec #cybersecurity #redteam #pentest #opensource

GitHub - r1cksec/cheatsheets: Collection of knowledge about information security Collection of knowledge about information security - r1cksec/cheatsheets

New cheatsheets pushed

github.com/r1cksec/chea...

#infosec #cybersecurity #redteam #pentest #threatintel #bugbounty #malware #opensource

ClearFake gets more evasive with new living off the land (LOTL) techniques ClearFake's latest campaign uses fake CAPTCHAs and social engineering trick victims into installing malware, and it's getting more evasive.

An interesting Clickfix attack vector

expel.com/blog/clearfa...

The Lolbas technique has been known for some time

lolbas-project.github.io/lolbas/Scrip...

#infosec #cybersecurity #redteam #phishing #microsoft

GitHub - spmedia/Threat-Actor-Usernames-Scrape: A collection of intel and usernames scraped from various cybercrime sources & forums. DarkForums, HackForums, Patched, Cracked, BreachForums, LeakBase, ... A collection of intel and usernames scraped from various cybercrime sources & forums. DarkForums, HackForums, Patched, Cracked, BreachForums, LeakBase, & more - spmedia/Threat-Actor-Usernam...

A collection of intel and usernames scraped from various cybercrime sources & forums. DarkForums, HackForums, Patched, Cracked, BreachForums, LeakBase, & more

github.com/spmedia/Thre...

#infosec #cybersecurity #threatintel

GitHub - looCiprian/GC2-sheet: GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate... GC2 is a Command and Control application that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or...

A Command and Control app that allows an attacker to execute commands on the target machine using Google Sheet or Microsoft SharePoint List and exfiltrate files using Google Drive or Microsoft SharePoint Document.

github.com/looCiprian/G...

#infosec #cybersecurity #redteam #pentest #threatintel

This project maintains a list of binaries natively available in Proxmox VE that can be leveraged by adversaries during red team operations

lolprox.yxz.red

#infosec #cybersecurity #redteam #pentest

High-performance, multi-threaded YARA & IOC scanner

github.com/Neo23x0/Loki...

#infosec #cybersecurity #threatintel #dfir #malware #opensource

GitHub - Print3M/Google-Hack-Search: Custom Google search engine dedicated to IT security & hacking stuff. Over 240 high-quality sources. Custom Google search engine dedicated to IT security & hacking stuff. Over 240 high-quality sources. - Print3M/Google-Hack-Search

Custom Google search engine dedicated to IT security & hacking stuff. Over 240 high-quality sources.

github.com/Print3M/Goog...

#infosec #cybersecurity #redteam #pentest #threatintel #malware #bugbounty

GitHub - bytewreck/DumpGuard: Proof-of-Concept tool for extracting NTLMv1 hashes from sessions on modern Windows systems. Proof-of-Concept tool for extracting NTLMv1 hashes from sessions on modern Windows systems. - bytewreck/DumpGuard

Proof of Concept for extracting NTLMv1 hashes from sessions on Windows (relies on the Remote Credential Guard protocol).

github.com/bytewreck/Du...

#infosec #cybersecurity #redteam #pentest #windows