Projects

Published: 27 Dec 2016 - 15:00 -0400

The following is a list of projects that I have started on Github, a description of each and links to the blog posts, source code and binaries where applicable.

Attacker Knowledge Base

Description

Attacker Knowledge Base is a personal public wiki. I try to commit to it whenever I figure something new out or want to replicate something. You can usually find things on here before I have a fully formed.

Site

Source

Common Findings Database

Description

Last updated: 05/26/2016

A public copy of findings for the community. The hope is that by writing them up publicly a peer review would happen to any findings submitted and others from the community would contribute.

Site

Source

ntlmv1des

WhiteChapel-NG

Shellshocker PoCs

WhiteChapel

vtnotify

NetView

Ditto

Description

Last updated: 08/30/2015

Ditto is a binary that steals the icon and information resources of a specified binary and it writes it onto a target binary.

Blog Post

Release

Source

Portals

Power Exploitation Wiki

Metasploit Wiki

Meterpy

TwitterFriendsOPML

DeepMagic

Watchmen

resolvequick

DeleteThatTweet

disappeared

FakeNetBIOS

Description

This is a copy of the FakeNetBIOS code that originally was written by Patrick Chambet but seemed to disappear from the Internet. I used this tool on pentests and wanted it preserved so I posted it on Github.

What does it do? Well it responds to NetBIOS requests just like Responder does but on a Windows host. There is now a great powershell script that does this as well called Inveigh by Kevin Robertson . These binaries should still work if powershell isn’t available.

Release

Source