ExchangeHound is a defensive BloodHound OpenGraph collector for on-prem Microsoft Exchange that maps mailbox delegation and Exchange privilege relationships to help blue teams find abuse paths and …

A C# utility for interacting with SCCM

The Red Sun vulnerability repository

Repository hosting the bluehammer vulnerability

Havoc C2 BOF port of the KslD.sys BYOVD technique. Credential extraction from lsass via physical memory — no OpenProcess, no auditable API calls.

Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.

COFF file (BOF) for managing Kerberos tickets.

InfraGuard is a Command & Control Redirection Proxy and Manager which protects your Red Team Infrastructure against threat attribution

Capture incoming TGTs in pure PowerShell to avoid using Rubeus

Extract Windows credentials directly from VM memory snapshots and virtual disks

Load any Beacon Object File using Powershell!

π RuView: WiFi DensePose turns commodity WiFi signals into real-time human pose estimation, vital sign monitoring, and presence detection — all without a single pixel of video.

MacOS Shared Library to Shellcode Loader

abusing windows toast notifications for fun and user manipulation

The agent harness performance optimization system. Skills, instincts, memory, security, and research-first development for Claude Code, Codex, Opencode, Cursor and beyond.

Generate DLL proxy/sideload projects. Automatically parses PE export tables and generates ready-to-compile project for red team engagements.

Remote Desktop Protocol .NET Console Application for Authenticated Command Execution

Cobalt Strike Beacon Object File (BOF) that uses WinStationConnect API to perform local/remote RDP session hijacking.

Lateral Movement Bof with MSI ODBC Driver Install

BOF for Kerberos abuse (an implementation of some important features of the Rubeus).

A Claude Code plugin that automatically captures everything Claude does during your coding sessions, compresses it with AI (using Claude's agent-sdk), and injects relevant context back into future …

754 structured cybersecurity skills for AI agents · Mapped to 5 frameworks: MITRE ATT&CK, NIST CSF 2.0, MITRE ATLAS, D3FEND & NIST AI RMF · agentskills.io standard · Works with Claude Code, GitHub …

A stealthier approach to WMI-based command execution using Impacket without touching the disk.

A web browser where every page is hallucinated by an LLM. No real HTTP requests. Browse the World Vibe Web.

AI-powered bug bounty hunting from your terminal - recon, 20 vuln classes, autonomous hunting, and report generation. All inside Claude Code.

📅 Easy!Appointments - Self Hosted Appointment Scheduler

A BOF to automate common persistence tasks for red teamers

Generalized Wi-Fi Client Isolation Bypasses

AV/EDR processes termination by exploiting a vulnerable driver (BYOVD)

Library of BOFs to interact with SQL servers