zer0lightning's Projects
I'm just sharing some of my thoughts.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory...
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
Useful commands for a lot of things, repository to store my notes.
Small and highly portable detection tests based on MITRE's ATT&CK.
š Awesome Cloudflare Workers
Collection of resources related to phishing
List of ngrok alternatives and other ngrok-like tunneling software and services. Focus on self-hosting.
š„ Everything about web-application firewalls (WAF).
Awesome XSS stuff
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
You didn't think I'd go and leave the blue team out, right?
The FLARE team's open-source tool to identify capabilities in executable files.
Course Repository for University of Cincinnati Malware Analysis Class (CS[567]038)
CTI-URLScan is a command line tool to enable analysts to search URLscan.io submissions. Pull screenshot and DOM content. As well as, automatic extraction of API items to allow for easier ingestion later on.
A script that helps you understand why your E-Mail ended up in Spam
Automate the creation of a lab environment complete with security tooling and logging best practices
PoC dlls for Task Scheduler COM Hijacking
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
DNS-over-HTTPS proxy on Cloudflare Pages
DNS-over-HTTPS proxy on Cloudflare Workers
Documentation and scripts to properly enable Windows event logs.
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study. Doctor of Science Cybersecurity at Marymount University Dissertation by Xena Olsen.
A modified grub allowing tweaking hidden BIOS settings.