SMBeagle: Intro SMBeagle is an (SMB) fileshare auditing tool that hunts out all files it can see in the network and reports if the file can be read and/or written. All these findings are streamed out to either a CSV file or…
#cyber
#threathunting
#infosec
Garud - An Automation Tool That Scans Sub-Domains, Sub-Domain Takeover And Then Filters Out XSS, SSTI, SSRF And More Injection Point Parameters
#hacktool
#kitploit
#infosec
Github Incident Playbooks "Incident Response Process and Playbooks | Goal: Playbooks to be Mapped to MITRE Attack Techniques"
#security
#threathunting
#infosec
AWS Pen-Testing Laboratory - Pentesting Lab With A Kali Linux Instance Accessible Via Ssh And Wireguard VPN And With Vulnerable Instances In A Private Subnet
#Audit
#Auditing
#AWS
#AwsPentestingLab
Lsass-Shtinkering: New method of dumping LSASS by abusing the Windows Error Reporting service. It sends a message to the service with the ALPC protocol to report an exception on LSASS. This report will cause the service to…
#cyber
#threathunting
#infosec
CyberChef – Detection Engineering, TI, DFIR, Malware Analysis Edition – We’ve published a fork of
#CyberChef
with some additional operations for detection engineers working with
#YARA
and
@virustotal
– to YARA strings – get all casings –…
#Security
Indicator-Intelligence - Finds Related Domains And IPv4 Addresses To Do Threat Intelligence After Indicator-Intelligence Collects Static Files
#IndicatorIntelligence
#ThreatIntelligence
ADHuntTool - Official Repo for the AdHuntTool - It can be used by Cobalt Strike execute-assembly or as standalone executable
#security
#threathunting
#infosec
Freeze: Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods on Windows
#cyber
#threathunting
#infosec
PowerZure is a PowerShell project created to assess and exploit resources within Microsoft’s cloud platform, Azure. PowerZure was created out of the need for a framework that can both perform reconnaissance and exploitation…
#cyber
#threathunting
#infosec
GitMonkey365 provides a tool for security consultants to easily conduct not only Microsoft 365, but also Azure subscriptions and Azure Active Directory security configuration reviews.
#Security
WinBoot: This PoC illustrate different technique to successfully excute Mimikatz with process injection – Embed Mimikatz as C# class, Mimikatz is converted to shellcode and converted to 3 digits format, Each syscall is obfuscated, Use C#…
#Security
Decoder++ - An Extensible Application For Penetration Testers And Software Developers To Decode/Encode Data Into Various Formats
#hacktool
#kitploit
#infosec
Manuka is an Open-source intelligence (OSINT) honeypot that monitors reconnaissance attempts by threat actors and generates actionable intelligence for Blue Teamers.
#cyber
#threathunting
#infosec