Opiniated RAG for integrating GenAI in your apps 🧠 Focus on your product rather than the RAG. Easy integration in existing products with customisation! Any LLM: GPT4, Groq, Llama. Any Vectorstore: …

Credentials recovery project

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

Main Sigma Rule Repository

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

Plug in and Play Implementation of Tree of Thoughts: Deliberate Problem Solving with Large Language Models that Elevates Model Reasoning by atleast 70%

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique present…

Mimikatz implementation in pure Python

Tools & Interesting Things for RedTeam Ops

Open Source Security Events Metadata (OSSEM)

BloodyAD is an Active Directory Privilege Escalation Framework

SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications

ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.

Provides In-memory compilation and reflective loading of C# apps for AV evasion.

Remote frame injection PoC by exploiting a standard compliant A-MPDU aggregation vulnerability in 802.11n networks.

🌔 Official Repository for DarkSpiritz Penetration Framework | Written in Python 🐍

Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.

Find key search strings to locate base64-encoded versions of ASCII strings.