Skip to content
View andrecrafts's full-sized avatar
317 followers · 12k following

Achievements

Achievement: Starstruckx2

Achievements

Achievement: Starstruckx2

Block or report andrecrafts

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
andrecrafts/README.md

Hi, I'm André, AKA AndreCrafts.

(You may also know me from my previous work as WafflesExploits).

Website Badge Linkedin Badge X Badge TryHackMe Badge HackTheBox Badge Mail Badge

I'm available for freelance contracts and consulting opportunities in DevSecOps, Cloud Architecture, and Application Security.

💡 Collaboration & Community 💡

Enjoying my work? Show your support with a ⭐️ or by sharing my repositories!

Have ideas or want to collaborate on a project? My inbox is always open.

📊 My GitHub Stats 📊

trophy

Pinned Loading

  1. hide-payload-in-images hide-payload-in-images Public

    A project that demonstrates embedding shellcode payloads into image files (like PNGs) using Python and extracting them using C/C++. Payloads can be retrieved directly from the file on disk or from …

    C++ 184 38

  2. CobaltStrike-YARA-Bypass-f0b627fc CobaltStrike-YARA-Bypass-f0b627fc Public

    Repository of scripts from my blog post on bypassing the YARA rule Windows_Trojan_CobaltStrike_f0b627fc by generating alternative shellcode sequences.

    Python 41 7

  3. Bloodhound-query-legacy2ce Bloodhound-query-legacy2ce Public

    A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to the API or save them to a file for later use.

    Python 32 2

  4. Dynamic-HTTP-Payload-Stager Dynamic-HTTP-Payload-Stager Public

    A dynamic HTTP/s Payload Stager that automates updating decryption variables, saving time and effort in managing shellcode loaders.

    C++ 18 5

  5. WafflesFORCE WafflesFORCE Public

    Bypass CSRF Token Protection with a Multi-threaded Login Bruteforcer

    Python 9 1

  6. httpserver-plus httpserver-plus Public

    An improved version of Python's http.server, created for redirection purposes.

    Python 7 1