- Wellington, New Zealand
- https://mat.nz
Starred repositories
.NET, PE, & Raw Shellcode Packer/Loader Written in Nim
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
Active Directory Integrated DNS dumping by any authenticated user
Leverage WindowsApp createdump tool to obtain an lsass dump
Real fucking shellcode encryptor & obfuscator tool
Microsoft Sentinel2Go is an open source project developed to expedite the deployment of a Microsoft Sentinel research lab.
Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
Tools for interacting with authentication packages using their individual message protocols
smbclient-ng, a fast and user friendly way to interact with SMB shares.
Elastic Security detection content for Endpoint
Wiki to collect Red Team infrastructure hardening resources
An step by step fuzzing tutorial. A GitHub Security Lab initiative
An ADCS honeypot to catch attackers in your internal network.
Create fake certs for binaries using windows binaries and the power of bat files
Realm is a cross platform Red Team engagement platform with a focus on automation and reliability.
Read Chromium data (namely, cookies and local storage) straight from disk, without spinning up the browser.
Construct the payload at runtime using an array of offsets
VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios
A memory-based evasion technique which makes shellcode invisible from process start to end.
Purple Team Resources for Enterprise Purple Teaming: An Exploratory Qualitative Study by Xena Olsen.
coffeegist / bofhound
Forked from fortalice/bofhoundGenerate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
Materials for the workshop "Red Team Ops: Havoc 101"