Cyberonix

- A eBPF Rootkit With A Backdoor, C2, Library Injection, Ex*****on Hijacking, Persistence And Stealth Capabilities.

TripleCross is inspired by previous implant designs in this area, notably the works of Jeff Dileo at 271, Pat Hogan at DEFCON 292, Guillaume Fournier and Sylvain Afchain also at DEFCON 293, and Kris Nóva's Boopkit4. We reuse and extend some of the techniques pioneered by these previous explorations of the offensive capabilities of eBPF technology.

:- https://github.com/h3xduck/TripleCross

*******ontester
Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

terminal, no special skills required. Once started, you can forget it is running. It provides several flags; each flag lets you customize your experience and change PartyLoud behaviour according to your needs.

:- https://github.com/davideolgiati/PartyLoud

*******ontester
Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

- - Automated Creation Of Windows Memory Snapshots For

Collect-MemoryDump.ps1 is script utilized to collect a Memory Snapshot from a live Windows system (in a sound manner).

:- https://github.com/evild3ad/Collect-MemoryDump

*******ontester
Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

- Threatest Is A Framework For End-To-End Testing Threat Detection Rules

Threatest allows you to detonate an attack technique, and verify that the alert you expect was generated in your favorite security platform.

:- https://github.com/DataDog/threatest

*******ontester
Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

FUD-UUID-Shellcode - Another injection technique using C++ that attempts to bypass Windows Defender using sorcery and UUID strings madness

:- https://github.com/Bl4ckM1rror/FUD-UUID-Shellcode

*******ontester
Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

- Shodan Monitoring Integration For TheHive

:- https://github.com/KaanSK/shomon

*******ontester
Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

- Tool That Manipulates Aspects Of Compiled Executables (.Exe Or ) To Avoid Detection From

Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL). Mangle can remove known Indicators of Compromise () based strings and replace them with random characters, change the file by inflating the size to avoid EDRs, and can clone code-signing certs from legitimate files. In doing so, Mangle helps loaders evade on-disk and in-memory scanners.

:- https://github.com/optiv/Mangle

*******ontester
Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

- Multi-Packer Wrapper Letting Us Daisy-Chain Various Packers, Obfuscators And Other Oriented Weaponry

Script that wraps around multitude of packers, protectors, obfuscators, shellcode loaders, encoders, generators to produce complex protected Red Team implants. Your perfect companion in Development CI/CD pipeline, helping watermark your artifacts, collect IOCs, backdoor and more.

:- https://github.com/mgeeky/ProtectMyTooling

*******ontester
Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

Let's celebrate the festival in the true sense by spreading joy and light up the world of others. Have a happy, safe and blessed Diwali!


*******ontester

Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

- A Python3 Based C2 Server To Make Life Of Red Teamer A Bit Easier. The Is Capable To Bypass All The Known Antiviruses And Endpoints

God Genesis is a C2 server purely coded in Python3 created to help and *******on . Currently It only supports reverse shell but wait a min, its a FUD and can give u admin shell from any targeted WINDOWS Machine.

:- https://github.com/SaumyajeetDas/GodGenesis

*******ontester

Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

is a Ready to go Platform.

Unlike other phishing techniques, EvilnoVNC allows 2FA bypassing by using a real browser over a noVNC connection.

In addition, this tool allows us to see in real time all of the victim's actions, access to their downloaded files and the entire browser profile, including cookies, saved passwords, browsing history and much more.

:- https://github.com/JoelGMSec/EvilnoVNC

*******ontester

Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

5.1 - Security GNU/Linux Distribution Designed with Cloud Pentesting and Security in Mind

Parrot OS 5.1 is officially released. We're proud to say that the new version of Parrot OS 5.1 is available for download; this new version includes a lot of improvements and updates that makes the distribution more performing and more secure.

:- https://parrotsec.org/download/

*******ontester

Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

- PowerShell Asynchronous TCP Reverse Shell

PSAsyncShell is an Asynchronous TCP Reverse Shell written in pure PowerShell.
Unlike other reverse shells, all the communication and ex*****on flow is done asynchronously, allowing to bypass some and some countermeasures against this kind of connections.
Additionally, this tool features command history, screen wiping, file uploading and downloading, information splitting through chunks and reverse Base64 URL encoded traffic.

:- https://github.com/JoelGMSec/PSAsyncShell

*******ontester

Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

Happy Navratri

Let us seek blessings of Maa Durga on the occasion of Navratri for a prosperous and successful year….. Wishing you and your family a Happy Navratri!!!

- CLI Tool For PKCS7 Padding Oracle Attacks

Exploit padding for fun and profit!

Pax (PAdding oracle eXploiter) is a tool for exploiting padding in order to:

-> Obtain plaintext for a given piece of CBC data.
-> Obtain encrypted bytes for a given piece of plaintext, using the unknown encryption algorithm used by the oracle.

This can be used to disclose encrypted session information, and often to bypass authentication, elevate privileges and to execute code remotely by encrypting custom plaintext and writing it back to the server.

As always, this tool should only be used on systems you own and/or have permission to probe!

:- https://github.com/liamg/pax

*******ontester

Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company

- Assembly Analysis Platform

Kam1n0 v2.x is a scalable assembly management and analysis platform. It allows a user to first index a (large) collection of binaries into different repositories and provide different analytic services such as clone search and classification. It supports multi-tenancy access and management of assembly repositories by using the concept of Application. An application instance contains its own exclusive repository and provides a specialized analytic service. Considering the versatility of tasks, Kam1n0 v2.x server currently provides three different types of clone-search applications: -, , and , and an executable classification based on Asm2Vec.

:- https://github.com/McGill-DMaS/Kam1n0-Community

*******ontester

Visit Us:- http://www.cyberonix.in/
Call/WA:- +91-9830188199
E-mail:- [email protected]
an *******on School and Service Provider Company