linWinPwn : A Bash Script That Automates A Number Of Active Directory Enumeration And Vulnerability Checks
linWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks. The script leverages and is dependent of a number of tools including: impacket, bloodhound, crackmapexec, ldapdomaindump, lsassy, smbmap, kerbrute, adidnsdump. Setup Git clone the repository and make the script executable git clone https://github.com/lefayjey/linWinPwncd linWinPwn; chmod +x linWinPwn.sh Install requirements on Kali machines using the install.sh script chmod +x install.shsudo ./install.sh On...
OWASP Coraza WAF : A Golang Modsecurity Compatible Web Application Firewall Library
.png "OWASP Coraza WAF : A Golang Modsecurity Compatible Web Application Firewall Library")
OWASP Coraza Web Application Firewall, OWASP Coraza is a golang enterprise-grade Web Application Firewall framework that supports Modsecurity's seclang language and is 100% compatible with OWASP Core Ruleset. Prerequisites Linux distribution (Debian and Centos are recommended, Windows is not supported yet)Golang compiler v1.16+ Migrate from v1 Rollback SecAuditLog to the legacy syntax (serial/concurrent)Attach an error log handler using waf.SetErrorLogCb(cb) (optional)the function Transaction.Clean() must be used...
Kraken : A Multi-Platform Distributed Brute-Force Password Cracking System
.png "Kraken : A Multi-Platform Distributed Brute-Force Password Cracking System")
Kraken is an online distributed brute force password cracking tool. It allows you to parallelize dictionaries and crunch word generator based cracking across multiple machines both as a web app in a web browser and as a standalone electron based client. Kraken aims to be easy to use, fault tolerant and scalable. I wrote Kraken because I wanted to learn...
vAPI : Vulnerable Adversely Programmed Interface Which Is Self-Hostable API
.png "vAPI : Vulnerable Adversely Programmed Interface Which Is Self-Hostable API")
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios in the means of Exercises. Requirements PHPMySQLPostManMITM Proxy Installation (Docker) docker-compose up -d Installation (Manual) Copying the Code cd <your-hosting-directory> git clone https://github.com/roottusk/vapi.git Setting up the Database Import vapi.sql into MySQL Database Configure the DB Credentials in the vapi/.env Starting MySQL service Run following command (Linux) service mysqld start Starting Laravel Server Go to vapi directory and Run php artisan serve Setting Up Postman Import vAPI.postman_collection.json in PostmanImport vAPI_ENV.postman_environment.json in...
EDRSandblast : Tool That Weaponize A Vulnerable Signed Driver To Bypass EDR Detections And LSASS Protection
EDRSandBlast is a tool written in C that weaponize a vulnerable signed driver to bypass EDR detections (Kernel callbacks and ETW TI provider) and LSASS protections. Multiple userland unhooking techniques are also implemented to evade userland monitoring. As of release, combination of userland (--usermode) and Kernel-land (--kernelmode) techniques were used to dump LSASS memory under EDR scrutiny, without being blocked nor generating "OS Credential Dumping"-related events in the product...
365Inspect : A PowerShell Script That Automates The Security Assessment Of Microsoft Office 365 Environments
365Inspect requires the administrative PowerShell modules for Microsoft Online, Azure AD (We recommend installing the AzureADPreview module), Exchange administration, Microsoft Graph, Microsoft Intune, Microsoft Teams, and Sharepoint administration. The 365Inspect.ps1 PowerShell script will validate the installed modules. If you do not have these modules installed, you will be prompted to install them, and with your approval, the script will attempt installation. Otherwise,...
Shhhloader : SysWhispers Shellcode Loader
Shhhloader is a SysWhispers Shellcode Loader that is currently a Work in Progress. It takes raw shellcode as input and compiles a C++ stub that has been integrated with SysWhispers in order to bypass AV/EDR. The included python builder will work on any Linux system that has Mingw-w64 installed. The tool has been confirmed to successfully load Meterpreter and a...
modifyCertTemplate : ADCS Cert Template Modification And ACL Enumeration
.png "modifyCertTemplate : ADCS Cert Template Modification And ACL Enumeration")
modifyCertTemplate tool is designed to aid an operator in modifying ADCS certificate templates so that a created vulnerable state can be leveraged for privilege escalation (and then reset the template to its previous state afterwards). This is specifically designed for a scenario where WriteProperty rights over a template have been compromised, but the operator is unsure which properties the right applies...
Melody : A Transparent Internet Sensor Built For Threat Intelligence
Melody is a transparent internet sensor built for threat intelligence and supported by a detection rule framework which allows you to tag packets of interest for further analysis and threat monitoring. Features Here are some key features of Melody : Transparent captureWrite detection rules and tag specific packets to analyze them at scaleMock vulnerable websites using the builtin HTTP/S serverSupports the main...
Maat : Open-source Symbolic Execution Framework
.png "Maat : Open-source Symbolic Execution Framework")
Maat is an open-source Dynamic Symbolic Execution and Binary Analysis framework. It provides various functionalities such as symbolic execution, taint analysis, constraint solving, binary loading, environment simulation, and leverages Ghidra's sleigh library for assembly lifting: https://maat.re Key Features Fast & Portable: Designed to scale to real-world applications. Fully written in C++ for good runtime performance. There are hardly any runtime dependencies, and...
