Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.

A modern 64-bit position independent implant template

BOF for Kerberos abuse (an implementation of some important features of the Rubeus).

DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.

Win32 and Kernel abusing techniques for pentesters

All the principles of the AI modular structure that generates malicious code fragments sold on the dark web

Emora is an OSINT tool like sherlock but with a GUI, which search for accounts by username across social networks

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

ROP-based sleep obfuscation to evade memory scanners

SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

Offensive Lua.

A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.

A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.

EDRSandblast-GodFault

An offensive data enrichment pipeline

Zero-ETL, infinite possibilities. Live query APIs, code & more with SQL. No DB required.

This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for local privilege escalation in the context of an unquoted servic…

AutoGPT is the vision of accessible AI for everyone, to use and to build on. Our mission is to provide the tools, so that you can focus on what matters.

ScareCrow - Payload creation framework designed around EDR bypass.

This is a bash script to bypass 802.1x NAC

KeyDecoder app lets you use your smartphone or tablet to decode your mechanical keys in seconds.

Shoggoth: Asmjit Based Polymorphic Encryptor

evilginx3 + gophish

Access https://infosimples.github.io/detect-headless to run several headless detection tests against your browser.

Elegant Scraper and Crawler Framework for Golang

A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX

Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post