Peneter Tools – Telegram
Peneter Tools
@Peneter_Tools
1.27K subscribers
26 photos
4 videos
56 files
611 links
https://soheilsec.com
https://blog.peneter.com
@learnpentest
@peneter_com
@Peneter_News
@Peneter_Tools
@Peneter_Media
آموزش امنیت
https://www.youtube.com/@soheilsec
اخبار امنیت
https://www.youtube.com/@Peneter
Download Telegram
About
Blog
Apps
Platform
Join
Peneter Tools
1.27K subscribers
Peneter Tools
Collection of #UAC #Bypass Techniques Weaponized as BOFs

https://github.com/icyguider/UAC-BOF-Bonanza
GitHub
GitHub - icyguider/UAC-BOF-Bonanza: Collection of UAC Bypass Techniques Weaponized as BOFs
Collection of UAC Bypass Techniques Weaponized as BOFs - icyguider/UAC-BOF-Bonanza
564 viewsSoheil Hashemi, edited  
Peneter Tools
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell. #evasion
https://github.com/Sh3lldon/FullBypass
GitHub
GitHub - Sh3lldon/FullBypass: A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language…
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell. - Sh3lldon/FullBypass
646 viewsSoheil Hashemi
Peneter Tools
password dumping via nplogongnotify()
https://github.com/gtworek/PSBits/tree/master/PasswordStealing/NPPSpy2
GitHub
PSBits/PasswordStealing/NPPSpy2 at master · gtworek/PSBits
Simple (relatively) things allowing you to dig a bit deeper than usual. - gtworek/PSBits
699 viewsSoheil Hashemi
Peneter Tools
Forwarded from SoheilSec (Soheil Hashemi)
یک تکنیک جدید جهت احراز هویت اجباری ADCS
https://github.com/decoder-it/ADCSCoercePotato
https://decoder.cloud/2024/02/26/hello-im-your-adcs-server-and-i-want-to-authenticate-against-you/
#ردتیم
676 viewsSoheil Hashemi
Peneter Tools
Keylogging in the Windows kernel with undocumented data structures
https://github.com/eversinc33/Banshee
https://eversinc33.com/posts/kernel-mode-keylogging/
GitHub
GitHub - eversinc33/Banshee: Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.
Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features. - eversinc33/Banshee
771 viewsSoheil Hashemi
Peneter Tools
https://github.com/Krook9d/PurpleLab
GitHub
GitHub - Krook9d/PurpleLab: PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity…
PurpleLab is an efficient and readily deployable lab solution, providing a swift setup for cybersecurity professionals to test detection rules and undertake various security tasks, all accessible ...
824 viewsSoheil Hashemi
Peneter Tools
Teler Real-time HTTP intrusion detection
https://github.com/kitabisa/teler
1.76K viewsSoheil Hashemi
Peneter Tools
Process Hypnosis: Debugger assisted control flow hijack
https://github.com/CarlosG13/Process-Hypnosis-Debugger-assisted-control-flow-hijack/tree/main
API : https://malapi.io/winapi/DebugActiveProcessStop
740 viewsSoheil Hashemi
Peneter Tools
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
https://github.com/notselwyn/cve-2024-1086
GitHub
GitHub - Notselwyn/CVE-2024-1086: Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most…
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 9...
855 viewsSoheil Hashemi
Peneter Tools
xz sshd backdoor

https://github.com/blasty/JiaTansSSHAgent
GitHub
GitHub - blasty/JiaTansSSHAgent
Contribute to blasty/JiaTansSSHAgent development by creating an account on GitHub.
1.98K viewsSoheil Hashemi
Peneter Tools
Peneter Tools
Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images. https://github.com/notselwyn/cve…
https://github.com/YuriiCrimson/ExploitGSM
GitHub
GitHub - YuriiCrimson/ExploitGSM: Exploit for 6.4 - 6.5 kernels and another exploit for 5.15 - 6.5
Exploit for 6.4 - 6.5 kernels and another exploit for 5.15 - 6.5 - YuriiCrimson/ExploitGSM
1.01K viewsSoheil Hashemi
Peneter Tools
https://github.com/W01fh4cker/CVE-2023-20198-RCE

vulnerable: https://en.fofa.info/result?qbase64=Ym9keT0iPHNjcmlwdD53aW5kb3cub25sb2FkPWZ1bmN0aW9uKCl7IHVybCA9Jy93ZWJ1aSc7d2luZG93LmxvY2F0aW9uLmhyZWY9dXJsO308L3NjcmlwdD4i
2.51K viewsSoheil Hashemi
Peneter Tools
lateral movement noscript that leverages the CcmExec service to remotely hijack user sessions.

https://github.com/mandiant/CcmPwn
GitHub
GitHub - mandiant/ccmpwn
Contribute to mandiant/ccmpwn development by creating an account on GitHub.
991 viewsSoheil Hashemi
Peneter Tools
1K viewsSoheil Hashemi
Peneter Tools
Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver
https://github.com/EvilBytecode/EDR-XDR-AV-Killer
GitHub
GitHub - EvilBytecode/EDR-XDR-AV-Killer: Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by…
Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver - EvilBytecode/EDR-XDR-AV-Killer
873 viewsSoheil Hashemi
Peneter Tools
https://github.com/cybersectroll/TrollAMSI
GitHub
GitHub - cybersectroll/TrollAMSI
Contribute to cybersectroll/TrollAMSI development by creating an account on GitHub.
977 viewsSoheil Hashemi
Peneter Tools
#LPE
https://github.com/RalfHacker/CVE-2024-26229-exploit
GitHub
GitHub - RalfHacker/CVE-2024-26229-exploit: Windows LPE
Windows LPE. Contribute to RalfHacker/CVE-2024-26229-exploit development by creating an account on GitHub.
822 viewsSoheil Hashemi
Peneter Tools
Process injection alternative
https://github.com/CICADA8-Research/IHxExec
https://cicada-8.medium.com/process-injection-is-dead-long-live-ihxhelppaneserver-af8f20431b5d
GitHub
GitHub - CICADA8-Research/IHxExec: Process injection alternative
Process injection alternative. Contribute to CICADA8-Research/IHxExec development by creating an account on GitHub.
2.25K viewsSoheil Hashemi
Peneter Tools
EDR TELEMETRY BLOCKING VIA PERSON-IN-THE-MIDDLE ATTACKS
https://tierzerosecurity.co.nz/2024/07/23/edr-telemetry-blocker.html
Tier Zero Security
Information Security Services. Offensive Security, Penetration Testing, Mobile and Application, Purple Team, Red Team
865 viewsSoheil Hashemi
Peneter Tools
Windows AppLocker Driver (appid.sys) #LPE
https://github.com/Crowdfense/CVE-2024-21338/tree/main
GitHub
GitHub - Crowdfense/CVE-2024-21338: Windows AppLocker Driver (appid.sys) LPE
Windows AppLocker Driver (appid.sys) LPE. Contribute to Crowdfense/CVE-2024-21338 development by creating an account on GitHub.
836 viewsSoheil Hashemi
Peneter Tools
Leak of any user's NetNTLM hash
https://github.com/MzHmO/LeakedWallpaper
GitHub
GitHub - MzHmO/LeakedWallpaper: Leak of any user's NetNTLM hash. Fixed in KB5040434
Leak of any user's NetNTLM hash. Fixed in KB5040434 - MzHmO/LeakedWallpaper
934 viewsSoheil Hashemi