A basic C2 framework written in C

Evasion by machine code de-optimization.

Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework

RDP Wrapper Library

Python utility that generates "imageless" QR codes in various formats

Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.

A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims at aiding with initial access during red teams and phishing …

JavaScript payload and supporting software to be used as XSS payload or post exploitation implant to monitor users as they use the targeted application. Also includes a C2 for executing custom Java…

Tools for interacting with authentication packages using their individual message protocols

Macro-header for compile-time C obfuscation (tcc, win x86/x64)

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 9…

Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

Obfuscate Go builds

SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.

Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs

The useful exploit finder

Tool to bypass 403/40X response codes.

SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

LLVM plugin to transparently apply stack spoofing and indirect syscalls to Windows x64 native calls at compile time.

DDSpoof is a tool that enables DHCP DNS Dynamic Update attacks against Microsoft DHCP servers in AD environments.

Windows memory hacking library

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

A complete standardlib for c for once

IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers.

A complete TUI for LDAP.