MiniDumpWriteDump behavior modification hook

Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain

Yet another LSASS dumper

Pass the Hash to a named pipe for token Impersonation

A .NET tool for exporting and importing certificates without touching disk.

Get file less command execution for lateral movement.

Scripts that allow you to copy/past text into another Windows process to bypass Citrix copy/paste limitation

Impersonating authentication over HTTP and/or named pipes.

C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection

Zoom Persistence Aggressor and Handler

A fast TCP/UDP tunnel over HTTP

Command line interface to dump LSASS memory to disk via SilentProcessExit

Winsock accept() Backdoor Implant.

Retrieve LAPS password from LDAP

Exploit for the RpcEptMapper registry key permissions vulnerability (Windows 7 / 2088R2 / 8 / 2012)

.NET Project for Attacking vCenter

A collection of tools to abuse chrome browser

Interact with Chromium-based browsers' debug port to view open tabs, installed extensions, and cookies

AndrewSpecial, dumping lsass' memory stealthily and bypassing "Cilence" since 2019.

nextnet is a pivot point discovery tool written in Go.

Amplify network visibility from multiple POV of other hosts

Redirecting (specific) TCP, UDP and ICMP traffic to another destination.

A kernel driver to practice writing exploits against, as well as some example exploits using public techniques.

c2nim is a tool to translate Ansi C code to Nim. The output is human-readable Nim code that is meant to be tweaked by hand before and after the translation process.

SMBExec implementation in Nim - SMBv2 using NTLM Authentication with Pass-The-Hash technique

DInvisibleRegistry