#CVE-2022

Utilities for exploiting vulnerability CVE-2022-40684 (FortiOS / FortiProxy / FortiSwitchManager - Authentication bypass on administrative interface).

https://github.com/und3sc0n0c1d0/CVE-2022-40684

@BlueRedTeam

#CVE-2022

You can find a python noscript to exploit the vulnerability on Bitbucket related CVE-2022-36804.

https://github.com/khal4n1/CVE-2022-36804

@BlueRedTeam

#Blue_Team

How to Investigate Insider Threats (Forensic Methodology)

https://www.inversecos.com/2022/10/how-to-investigate-insider-threats.html

@BlueRedTeam

#Red_Team

+ Redeye - Pentest operation tool
https://github.com/redeye-framework/Redeye

+ Bayanay - Python Wardriving
https://github.com/anil-yelken/wardriving

@BlueRedTeam

#Red_Team

RedEye is an open-source analytic tool developed by CISA and DOE’s Pacific Northwest National Laboratory to assist Red Teams with visualizing and reporting command and control activities. This tool, released in October 2022 on GitHub, allows an operator to assess and display complex data, evaluate mitigation strategies, and enable effective decision making in response to a Red Team assessment.

The tool parses logs, such as those from Cobalt Strike, and presents the data in an easily digestible format. The users can then tag and add comments to activities displayed within the tool. The operators can use the RedEye’s presentation mode to present findings and workflow to stakeholders.

https://github.com/cisagov/RedEye

@BlueRedTeam

#Red_Team

Template-Driven AV/EDR Evasion Framework.

Modern Penetration Testing and Red Teaming often require bypassing common AV/EDR appliances in order to execute code on a target. With time, defenses are becoming more complex and inherently more difficult to bypass consistently.

Inceptor is a tool that can help to automate a great part of this process, hopefully requiring no further effort.

Inceptor is a template-based PE packer for Windows, designed to help penetration testers and red teamers to bypass common AV and EDR solutions. Inceptor has been designed with a focus on usability, and to allow extensive user customization.

https://github.com/klezVirus/inceptor

@BlueRedTeam

#Red_Team

​​Awesome Command & Control

A collection of awesome Command & Control (C2) frameworks, tools and resources for post-exploitation and red teaming assessments.

https://github.com/tcostam/awesome-command-control

@BlueRedTeam

#Purple_Team

Codecepticon is a .NET application that allows you to obfuscate C#, VBA/VB6 (macros), and PowerShell source code, and is developed for offensive security engagements such as Red/Purple Teams.

What separates Codecepticon from other obfuscators is that it targets the source code rather than the compiled executables, and was developed specifically for AV/EDR evasion

https://github.com/Accenture/Codecepticon

@BlueRedTeam

#Purple_Team

​EDR-Test

Automating EDR Testing with reference to MITRE ATTACK via Cobalt Strike .

https://github.com/TH3xACE/EDR-Test

@BlueRedTeam

#Red_Team

Collection of PoC and offensive techniques used by the BlackArrow Red Team

https://github.com/blackarrowsec/redteam-research

@BlueRedTeam

#Red_Team

Easy phishing environment builder (Red Team)

https://github.com/fyoozr/phisher

@BlueRedTeam

#CVE-2022

Exploit Fortigate - CVE-2022-40684

https://github.com/gustavorobertux/gotigate

@BlueRedTeam

#webshell
a simple webshell build in PHP 7.4 for penetration testing and educational purposes only.

https://github.com/Elliottophellia/ophellia

@BlueRedTeam

#CVE-2022

TOP All bugbounty pentesting CVE-2022- POC Exp  RCE example payload  Things

https://github.com/privatenets/Discord-Image-Token-Password-Grabber-Exploit-Cve-2022

@BlueRedTeam

#Red_Team
​​RedTeam-OffensiveSecurity

Tools & Interesting Things for RedTeam Ops

https://github.com/bigb0sss/RedTeam-OffensiveSecurity

@BlueRedTeam

GEOINT. Number plates.


• Searching for various information and the exact location of the target is quite an exciting process. Every detail is important here, absolutely every little thing can become a clue and lead us to the goal, whether it is a road sign, traffic light, mountain relief, road markings, signposts, power lines, etc.

• Today I will share a useful resource with a huge collection of license plates from around the world. This information will help you perform a more detailed analysis and determine the target location: http://licenseplatemania.com

In addition to the main source, pay attention to the additional content:

• https://www.alpca.org
• https://www.eurolates.eu
• http://www.licensepl8s.com
• http://www.olavsplates.com
• https://www.plates-spotting.ch
• https://www.regtransfers.co.uk
• https://eurolate.org/Eurolate
• https://www.licenseplatespics.com
• http://www.worldlicenseplates.com
• https://www.matriculasdelmundo.com
• http://plaque.free.fr/index-english.html

#OSINT
@OsintBlackBox

#Blue_Team
​​Iscariot Suite

The Iscariot Suite is a collection of tools to enhance and augment trusted open-source and commercial Blue Team/Sysadmin products, turning them into traitorware to achieve offensive security goals. The Iscariot Suite takes its name from the famous traitor Judas Iscariot, who - according to biblical tradition - betrayed Jesus.

https://gitlab.com/badsectorlabs/iscariot-suite

@BlueRedTeam

#Red_Team
+ Chopper payload smuggling
https://ired.dev/discussion/13/chopper-payload-smuggling
]-> https://github.com/0xsp-SRD/0xsp.com/tree/main/chopper

@BlueRedTeam

#Cobalt_Strike
Privat crypt Cobalt Strike and powershell

https://github.com/injectexpert/Crypt-Cobalt-Strike-Powershell

@BlueRedTeam

#Red_Team

Large Antenna Array Space Object Tracker - Red Team

https://github.com/wjiaaaaa/LAASOT

@BlueRedTeam

#CVE-2022

SpookySSL CVE-2022-3602 SSLv3 Scanner for Windows, Linux, macOS

https://github.com/alicangnll/SpookySSL-Scanner

@BlueRedTeam