Stars
Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
A modern 64-bit position independent implant template
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.
Win32 and Kernel abusing techniques for pentesters
All the principles of the AI modular structure that generates malicious code fragments sold on the dark web
Emora is an OSINT tool like sherlock but with a GUI, which search for accounts by username across social networks
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
ROP-based sleep obfuscation to evade memory scanners
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.
A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.
A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.
Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.
This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for local privilege escalation in the context of an unquoted servic…
AutoGPT is the vision of accessible AI for everyone, to use and to build on. Our mission is to provide the tools, so that you can focus on what matters.
ScareCrow - Payload creation framework designed around EDR bypass.
KeyDecoder app lets you use your smartphone or tablet to decode your mechanical keys in seconds.
Access https://infosimples.github.io/detect-headless to run several headless detection tests against your browser.
Elegant Scraper and Crawler Framework for Golang
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post