Skip to content
View UNC1739's full-sized avatar
59 followers · 0 following

Achievements

Achievement: Pair Extraordinairex2Achievement: QuickdrawAchievement: Starstruckx3Achievement: Pull Sharkx2Achievement: Arctic Code Vault Contributor

Achievements

Achievement: Pair Extraordinairex2Achievement: QuickdrawAchievement: Starstruckx3Achievement: Pull Sharkx2Achievement: Arctic Code Vault Contributor

Highlights

Block or report UNC1739

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Stars

Showing results

Tylous / SourcePoint

SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.

Go 1,177 165 Updated Apr 16, 2025

tijme / dittobytes

Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE.

C++ 554 60 Updated Sep 9, 2025

HulkOperator / CallStackSpoofer

C 43 3 Updated Dec 19, 2024

arget13 / DDexec

A technique to run binaries filelessly and stealthily on Linux by "overwriting" the shell's process with another.

Shell 871 89 Updated Mar 21, 2025

anvilsecure / ulexecve

ulexecve is a userland execve() implementation which helps you execute arbitrary ELF binaries on Linux from userland without the binaries ever having to touch storage. This is useful for red-teamin…

Python 196 18 Updated Jan 3, 2024

som3canadian / Cloudflare-Redirector

Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.

Shell 174 16 Updated Mar 14, 2025

almounah / go-buena-clr

Forked from Ne0nd0g/go-clr

Good CLR Host with Native patchless AMSI Bypass

Go 96 13 Updated Apr 18, 2025

thesecretclub / riscy-business

RISC-V Virtual Machine

C 255 214 Updated Jun 10, 2025

praetorian-inc / oauthseeker

A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office365 users.

HTML 150 17 Updated Jul 31, 2025

passthehashbrowns / Being-A-Good-CLR-Host

C 84 15 Updated Jan 21, 2025

0xcpu / WinAltSyscallHandler

Some research on AltSystemCallHandlers functionality in Windows 10 20H1 18999

C 237 54 Updated Nov 6, 2019

elastic / protections-artifacts

Elastic Security detection content for Endpoint

YARA 1,325 148 Updated Nov 10, 2025

Neo23x0 / signature-base

YARA signature and IOC database for my scanners and tools

YARA 2,792 650 Updated Nov 3, 2025

pathtofile / SealighterTI

Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider

C 192 31 Updated Dec 6, 2022

es3n1n / defendnot

An even funnier way to disable windows defender. (through WSC api)

C++ 2,981 265 Updated Oct 17, 2025

xforcered / RemoteMonologue

Forked from 3lp4tr0n/RemoteMonologue

Weaponizing DCOM for NTLM Authentication Coercions

Python 272 24 Updated Jul 1, 2025

RealKeyboardWarrior / zoomer

Forked from chris124567/zoomer

Chat bots (& more) for Zoom by figuring out their websocket protocol

Go 4 Updated Sep 6, 2023

Shubhamsaboo / awesome-llm-apps

Collection of awesome LLM apps with AI Agents and RAG using OpenAI, Anthropic, Gemini and opensource models.

Python 78,194 10,406 Updated Nov 13, 2025

Offensive-Panda / ShadowDumper

Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive da…

C++ 565 90 Updated May 22, 2025

weak1337 / Alcatraz

x64 binary obfuscator

C++ 1,911 272 Updated Jul 14, 2023

fortra / No-Consolation

A BOF that runs unmanaged PEs inline

C 661 80 Updated Oct 23, 2024

karrni / sparrot

Discover related domains using Whois data from whoxy.com

Python 15 Updated May 30, 2023

WKL-Sec / HiddenDesktop

HVNC for Cobalt Strike

C 1,283 198 Updated Dec 7, 2023

alex / what-happens-when

An attempt to answer the age old interview question "What happens when you type google.com into your browser and press enter?"

42,490 5,717 Updated Aug 19, 2024

SolomonSklash / netntlm

A crappy hook on SpAcceptLsaModeContext that prints incoming auth attempts. WIP

C 37 14 Updated Jul 27, 2021

alfarom256 / MCP-PoC

Minifilter Callback Patching Proof-of-Concept

C++ 73 15 Updated Oct 31, 2022

redpanda-data / connect

Fancy stream processing made operationally mundane

Go 8,500 899 Updated Nov 14, 2025

fatih / camelcase

Split a camelcase word into a slice of words in Go

Go 182 26 Updated Dec 2, 2020

projectdiscovery / katana

A next-generation crawling and spidering framework.

Go 14,425 811 Updated Nov 10, 2025

praetorian-inc / fingerprintx

Standalone utility for service discovery on open ports!

Go 659 55 Updated Mar 4, 2025
Next