Living off the land searches for explorer and sharepoint

A tool for pointesters to find candies in SharePoint

Nmap Dashboard Mini Project

miscellaneous scripts and programs

A revamped and updated version of my original OneRuleToRuleThemAll hashcat rule

Build your personal knowledge base with TriliumNext Notes

A curated list of awesome tools, research, papers and other projects related to password cracking and password security.

The Network Execution Tool

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.

modify from memorymodule. support exception

Stand up a simple Elastic container with Kibana, Fleet, and the Detection Engine

BOF for Kerberos abuse (an implementation of some important features of the Rubeus).

A multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷

Gather and update all available and newest CVEs with their PoC.

jsleak is a tool to find secret , paths or links in the source code during the recon.

LDAP enumeration tool implemented in Python3

Free, libre, effective, and data-driven wordlists for all!

Execute unmanaged Windows executables in CobaltStrike Beacons

Use hardware breakpoints to spoof the call stack for both syscalls and API calls

PoC for a sleep obfuscation technique leveraging waitable timers to evade memory scanners.

HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.

Privileger is a tool to work with Windows Privileges

Obfuscate powershell scripts by replacing Function names, Variables and Parameters.

Payload Loader With Evasion Features

Creating a repository with all public Beacon Object Files (BoFs)