Todesstern: A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities
https://github.com/kleiton0x00/Todesstern
https://github.com/kleiton0x00/Todesstern
jsmug: A PoC code for JSON Smuggling technique to smuggle arbitrary files through JSON
https://github.com/xscorp/jsmug
https://github.com/xscorp/jsmug
Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection
https://github.com/RedefiningReality/Cobalt-Strike
https://github.com/RedefiningReality/Cobalt-Strike
CobaltStrike post-penetration automation chain based on OPSEC
https://github.com/lintstar/CS-AutoPostChain
https://github.com/lintstar/CS-AutoPostChain
Identity Providers for RedTeamers
https://blog.xpnsec.com/identity-providers-redteamers
https://blog.xpnsec.com/identity-providers-redteamers
Overview of GLIBC heap exploitation techniques
https://0x434b.dev/overview-of-glibc-heap-exploitation-techniques
https://0x434b.dev/overview-of-glibc-heap-exploitation-techniques
Poisoned Pipeline Execution Attacks: A Look at CI-CD Environments
https://bishopfox.com/blog/poisoned-pipeline-attack-execution-a-look-at-ci-cd-environments
https://bishopfox.com/blog/poisoned-pipeline-attack-execution-a-look-at-ci-cd-environments
How to Emulate a Ransomware Attack
https://practicalsecurityanalytics.com/how-to-emulate-a-ransomware-attack
https://practicalsecurityanalytics.com/how-to-emulate-a-ransomware-attack
From Error to Entry: Cracking the Code of Password-Spraying Tools
https://trustedsec.com/blog/from-error-to-entry-cracking-the-code-of-password-spraying-tools
https://trustedsec.com/blog/from-error-to-entry-cracking-the-code-of-password-spraying-tools
Weaponizing Windows Thread Pool APIs: Proxying DLL Loads Using I/O Completion Callbacks
https://fin3ss3g0d.net/index.php/2024/03/18/weaponizing-windows-thread-pool-apis-proxying-dll-loads
https://fin3ss3g0d.net/index.php/2024/03/18/weaponizing-windows-thread-pool-apis-proxying-dll-loads
Hook, Line and Sinker: Phishing Windows Hello for Business
https://medium.com/@yudasm/bypassing-windows-hello-for-business-for-phishing-181f2271dc02
https://medium.com/@yudasm/bypassing-windows-hello-for-business-for-phishing-181f2271dc02
Subdomain Fuzzing worth 35k bounty!
https://medium.com/@HX007/subdomain-fuzzing-worth-35k-bounty-daebcb56d9bc
Insecure Authentication - Deep Dive
https://cyberbull.medium.com/insecure-authentication-deep-dive-aa3530fff3e1
https://medium.com/@HX007/subdomain-fuzzing-worth-35k-bounty-daebcb56d9bc
Insecure Authentication - Deep Dive
https://cyberbull.medium.com/insecure-authentication-deep-dive-aa3530fff3e1
Real profit
Weaponizing Windows Thread Pool APIs: Proxying DLL Loads Using I/O Completion Callbacks https://fin3ss3g0d.net/index.php/2024/03/18/weaponizing-windows-thread-pool-apis-proxying-dll-loads
DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
https://github.com/fin3ss3g0d/IoDllProxyLoad
https://github.com/fin3ss3g0d/IoDllProxyLoad
CloudInject: This is a simple tool which can be used to inject a DLL into third-party AD connectors to harvest credentials
https://github.com/xpn/CloudInject
https://github.com/xpn/CloudInject
AI Powered Terminal Based Ethical Hacking Assistant
https://github.com/berylliumsec/neutron
https://github.com/berylliumsec/neutron
Achieving DLL Side-Loading in the Original Process
https://www.okiok.com/achieving-dll-side-loading-in-the-original-process
https://www.okiok.com/achieving-dll-side-loading-in-the-original-process
Leveraging the Direct Pointer A Stealthy Maneuver in Evasion Tactics
https://lsecqt.github.io/Red-Teaming-Army/malware-development/leveraging-the-direct-pointer---a-stealthy-maneuver-in-evasion-tactics
https://lsecqt.github.io/Red-Teaming-Army/malware-development/leveraging-the-direct-pointer---a-stealthy-maneuver-in-evasion-tactics
Finding pastures new: An alternate approach for implant design
https://medium.com/@sapientflow/finding-pastures-new-an-alternate-approach-for-implant-design-644611c526ca
https://medium.com/@sapientflow/finding-pastures-new-an-alternate-approach-for-implant-design-644611c526ca
SO-CON 2024 Presentation Archive
https://github.com/SpecterOps/presentations/tree/master/SO-CON%202024
https://github.com/SpecterOps/presentations/tree/master/SO-CON%202024
asploit: One line command and control backdoors for APIs and web applications
https://github.com/Geeoon/asploit
https://github.com/Geeoon/asploit
HttpRemotingObjRefLeak: Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting
https://github.com/codewhitesec/HttpRemotingObjRefLeak
https://github.com/codewhitesec/HttpRemotingObjRefLeak