A wrapper executable that can run any executable as a Windows service, in a permissive license.

An open-source, free protector for .NET applications

A set of .NET libraries for Windows implementing PInvoke calls to many native Windows APIs with supporting wrappers.

SharpSploit is a .NET post-exploitation library written in C#

KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).

A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.

PoCs and tools for investigation of Windows process execution techniques

Framework for Kerberos relaying

Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)

StandIn is a small .NET35/45 AD post-exploitation toolkit

Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.

A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.

The Token Stealer

project-blacklist3r

A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.

Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)

StandIn is a small .NET35/45 AD post-exploitation toolkit

An open-source process injection enumeration tool written in C#

A C# penetration testing tool to discover low-haning web fruit via web requests.

A variety of AV evasion techniques written in C# for practice.

SharpBuster is a C# implementation of a directory brute forcing tool. It's designed to be used via Cobalt Strike's execute-assembly and similar tools, when running a similar tool over a SOCKS proxy…

This is Visual C# code that will create a new user named "mcfatty" when run as a service.