Lists (2)
Stars
Handful of Resources and Playbooks built as a result of our experience dealing with BEC Incidents
The Artie the Owl badge for BSIDES Leeds 2026!
A tool uses the QoS Policy (Pacer.sys) to throttle Endpoint Detection and Response (EDR) agents from connecting to the server.
WscApi Sample for C#, Use com to get Windows Security Center Products Details
Async PICO Hub is a work-in-progress framework to extend Cobalt Strike with custom event monitoring and in-process Asynchronous BOFs
Proof-of-concept code for understanding the allow-jit entitlement on macOS
Fully automatic censorship removal for language models
vanity address generator for tor onion v3 (ed25519) hidden services
FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loading
This is a novel technique that leverages the well-known Device Code phishing approach. It dynamically initiates the flow when the victim opens the phishing link and instantly redirects them to the …
DSCourier is a proof-of-concept that uses the WinGet Configuration COM API to apply DSC configurations through Microsoft-signed binaries.
A modern runtime for JavaScript and TypeScript.
A newly discovered vulnerable driver, pstrip64.sys (CVE-2026-29923) allows an unprivileged user to escalate privileges to SYSTEM via a crafted IOCTL request
Windows Error Reporting ALPC Elevation of Privilege (CVE-2026-20817) - Proof-of-Concept exploit demonstrating local privilege escalation via WER service.
An even funnier way to disable windows defender. (through WSC api)
Reattempt of BlueHammer disclosed in April 2026
A Beacon Object File suite for Microsoft SQL Server that speaks TDS 7.4 on the wire itself
AI-powered job search system built on Claude Code. 14 skill modes, Go dashboard, PDF generation, batch processing.