Giter Site home page Giter Site logo

Diego Capriotti's Projects

beacon icon beacon

Former attempt at creating a independent Cobalt Strike Beacon

bouncygate icon bouncygate

HellsGate in Nim, but making sure that all syscalls go through NTDLL.DLL (as in RecycledGate).

dinjector icon dinjector

Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL

dojoloader icon dojoloader

Generic PE loader for fast prototyping evasion techniques

dropspawn_bof icon dropspawn_bof

CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking

embedder icon embedder

Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies

filelessremotepe icon filelessremotepe

Loading Fileless Remote PE from URI to memory with argument passing and ETW patching and NTDLL unhooking and No New Thread technique

foliage icon foliage

Public variation of FOLIAGE ( original developer )

goad icon goad

game of active directory

gregsbestfriend icon gregsbestfriend

GregsBestFriend process injection code created from the White Knight Labs Offensive Development course

grimreaper icon grimreaper

A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls

krbdump icon krbdump

A way to extract tickets in case I need to purge and restore tickets on the fly.

krblist icon krblist

Old post-ex for listing kerberos tickets. A terribly written clone of `klist`

moduleshifting icon moduleshifting

Stealthier variation of Module Stomping and Module Overloading injection techniques that reduces memory IoCs. Implemented in Python ctypes

offensivepipeline icon offensivepipeline

OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.

processstomping icon processstomping

A variation of ProcessOverwriting to execute shellcode on an executable's section

pyramid icon pyramid

a tool to help operate in EDRs' blind spots

python-bof-runner icon python-bof-runner

Python inline shellcode injector that could be used to run BOFs by leveraging BOF2shellcode

pythonmemorymodule icon pythonmemorymodule

pure-python implementation of MemoryModule technique to load dll and unmanaged exe entirely from memory

talks icon talks

Repo containing my public talks

unhookingpatch icon unhookingpatch

Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.