Steve Borosh rvrsh3ll

## urbandoor.cs
using NtApiDotNet;
using NtApiDotNet.Ndr.Marshal;
using NtApiDotNet.Win32;
using NtApiDotNet.Win32.Rpc.Transport;
using NtApiDotNet.Win32.Security.Authentication;
using NtApiDotNet.Win32.Security.Authentication.Kerberos;
using NtApiDotNet.Win32.Security.Authentication.Kerberos.Client;
using NtApiDotNet.Win32.Security.Authentication.Kerberos.Server;
using NtApiDotNet.Win32.Security.Authentication.Logon;
using System;

## HInvoke.cs
using System.Linq;
using System.Reflection;

namespace HashInvoke;

public class HInvoke
{
    public static T InvokeMethod<T>(uint classID, uint methodID, object[]? args = null)
    {
        // Get the System assembly and go trough all its types hash their name

## brute_mysqlx.py
import mysqlx
import argparse

# pip3 install mysql-connector-python

def main(target,targetport,user,passwordfile,verbose):

    with open(passwordfile, "r") as f:
        passwords = f.readlines()
        for password in passwords:

## RC4.cs
public class RC4 {

  public static byte[] Encrypt(byte[] pwd, byte[] data) {
    int a, i, j, k, tmp;
    int[] key, box;
    byte[] cipher;

    key = new int[256];
    box = new int[256];
    cipher = new byte[data.Length];

## gadget2jscriptQueueAPCInject.cs
using System;
using System.IO;
using System.Diagnostics;
using System.Reflection;
using System.Runtime.InteropServices;
using System.Net;
using System.IO.Compression;

    public class Payload
    {

## shazam.py
#!/usr/bin/env python2.7
import argparse
import binascii
import sys
import base64
import hashlib
from Crypto.Cipher import AES
from pkcs7 import PKCS7Encoder
import random
from random import randint

## gist:78739132045f7a58a6428830f44cdec4
Download the CLI Version of NuGet
https://dist.nuget.org/win-x86-commandline/latest/nuget.exe

--Create Work Paths
md c:\nuget
md c:\nuget\source
md c:\nuget\publish

-- One-Time - Create local NuGet Repo/feed using a local drive path
cd c:\nuget

## EtwStartWebClient.cs
using System.Runtime.InteropServices;
using System;

/*
 * Simple C# PoC to enable WebClient Service Programmatically
 * Based on the C++ version from @tirannido (James Forshaw)
 * Twitter: https://twitter.com/tiraniddo
 * URL: https://www.tiraniddo.dev/2015/03/starting-webclient-service.html
 *
 * Compile with:

## krack_zine.txt
 KK     KK     RRRRRRR          AAA         CCCCCCCCCC     KK     KK
 KK    KK      RR    R         AA AA        CC             KK    KK
 KKKKKKK       RRRRRRR        AA   AA       CC             KKKKKKK
 KK    KK      RR  RR        AAAAAAAAA      CC             KK    KK
 KK     KK     RR   RR      AA       AA     CC             KK     KK
 KK      KK OO RR    RR OO AA         AA OO CCCCCCCCCCC OO KK      KK OO


	     ||==--Killer Ride And Chilling Kraftwork--==||
--------------------------------------------------------------------------

## Export_All_Yammer_Users.ps1
##############################################################################
# Export all Yammer users through the Yammer REST API with PowerShell
###############################################################################

# Variables
$baererToken = "YourBaererToken"
$yammerBaseUrl = "https://www.yammer.com/api/v1"

# Function Get-BaererToken
Function Get-BaererToken()
	using NtApiDotNet;
	using NtApiDotNet.Ndr.Marshal;
	using NtApiDotNet.Win32;
	using NtApiDotNet.Win32.Rpc.Transport;
	using NtApiDotNet.Win32.Security.Authentication;
	using NtApiDotNet.Win32.Security.Authentication.Kerberos;
	using NtApiDotNet.Win32.Security.Authentication.Kerberos.Client;
	using NtApiDotNet.Win32.Security.Authentication.Kerberos.Server;
	using NtApiDotNet.Win32.Security.Authentication.Logon;
	using System;
	using System.Linq;
	using System.Reflection;

	namespace HashInvoke;

	public class HInvoke
	{
	public static T InvokeMethod<T>(uint classID, uint methodID, object[]? args = null)
	{
	// Get the System assembly and go trough all its types hash their name
	import mysqlx
	import argparse

	# pip3 install mysql-connector-python

	def main(target,targetport,user,passwordfile,verbose):

	with open(passwordfile, "r") as f:
	passwords = f.readlines()
	for password in passwords:
	public class RC4 {

	public static byte[] Encrypt(byte[] pwd, byte[] data) {
	int a, i, j, k, tmp;
	int[] key, box;
	byte[] cipher;

	key = new int[256];
	box = new int[256];
	cipher = new byte[data.Length];
	using System;
	using System.IO;
	using System.Diagnostics;
	using System.Reflection;
	using System.Runtime.InteropServices;
	using System.Net;
	using System.IO.Compression;

	public class Payload
	{
	#!/usr/bin/env python2.7
	import argparse
	import binascii
	import sys
	import base64
	import hashlib
	from Crypto.Cipher import AES
	from pkcs7 import PKCS7Encoder
	import random
	from random import randint
	Download the CLI Version of NuGet
	https://dist.nuget.org/win-x86-commandline/latest/nuget.exe

	--Create Work Paths
	md c:\nuget
	md c:\nuget\source
	md c:\nuget\publish

	-- One-Time - Create local NuGet Repo/feed using a local drive path
	cd c:\nuget
	using System.Runtime.InteropServices;
	using System;

	/*
	* Simple C# PoC to enable WebClient Service Programmatically
	* Based on the C++ version from @tirannido (James Forshaw)
	* Twitter: https://twitter.com/tiraniddo
	* URL: https://www.tiraniddo.dev/2015/03/starting-webclient-service.html
	*
	* Compile with:
	KK KK RRRRRRR AAA CCCCCCCCCC KK KK
	KK KK RR R AA AA CC KK KK
	KKKKKKK RRRRRRR AA AA CC KKKKKKK
	KK KK RR RR AAAAAAAAA CC KK KK
	KK KK RR RR AA AA CC KK KK
	KK KK OO RR RR OO AA AA OO CCCCCCCCCCC OO KK KK OO


	\|\|==--Killer Ride And Chilling Kraftwork--==\|\|
	--------------------------------------------------------------------------
	##############################################################################
	# Export all Yammer users through the Yammer REST API with PowerShell
	###############################################################################

	# Variables
	$baererToken = "YourBaererToken"
	$yammerBaseUrl = "https://www.yammer.com/api/v1"

	# Function Get-BaererToken
	Function Get-BaererToken()