CYRIL PINEIRO's Projects
a tool to help operate in EDRs' blind spots
RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
Red Teaming Tactics and Techniques
reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine has customizable scan engines, which can be used to scan the websites, endpoints, and gather information.
š Reverse Shell Cheat Sheet š
Rex Shellcode Loader for AV/EDR evasion
Repository of yara rules
Escalate Service Account To LocalSystem via Kerberos
Sandman is a NTP based backdoor for red team engagements in hardened networks.
The SAP Threat Modeling Tool is an on-premises open-source web application designed to analyze and visualize connections between SAP systems, helping users identify security risks and vulnerabilities. With features like inputting SAP credentials, scanning for connections, and visualizing the network.
Sysmon-Like research tool for ETW
Perform a MitM attack and extract clear text credentials from RDP connections
Terminate AV/EDR leveraging BYOVD attack
Zerologon Exploiter I used on Cobalt Strike
ROP-based sleep obfuscation to evade memory scanners
Shoggoth: Asmjit Based Polymorphic Encryptor
Adversary Emulation Framework
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.
Real fucking shellcode encryptor & obfuscator tool
A fast execution trace symbolizer for Windows that runs on all major platforms and doesn't depend on any Microsoft libraries.
Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.
SysWhispers on Steroids - AV/EDR evasion via direct system calls.
Send phishing messages and attachments to Microsoft Teams users
This tool extracts and displays data from the Recall feature in Windows 11, providing an easy way to access information about your PC's activity snapshots.
Go scanner to find web cache poisoning vulnerabilities in a list of URLs
š¼ The open source alternative to Tines / Splunk SOAR. Build AI-assisted workflows, orchestrate alerts, and close cases fast.
Dynamic unpacker and import fixer for Themida/WinLicense 2.x and 3.x.