Stars
Skills for threat modeling, scanning, triage, patching, plus an autonomous scanning harness you can /customize
An modular asset discovery framework written in python to automate the repeating manual work
Proof-of-Concept tool for extracting credential material from protected sessions on modern Windows systems.
template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.
A collection of AI-modified, improved, or customized Burp Suite extensions
A tunneling toolkit enabling operators to move data from one place to another evasively.
Injecting DLL into LSASS at boot
Early Bird Cryo Injections – APC-based DLL & Shellcode Injection via Pre-Frozen Job Objects
An offensive/defense security toolset for discovery, recon and ethical assessment of AI Agents
Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
Deploy reverse shells and perform stealthy process injection with EchoStrike – a Go-based tool for ethical hacking and Red Team operations.
Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)
Objective-C library and console to interact with Heimdal APIs for macOS Kerberos
Command line utility for inserting a dylib load command into a Mach-O binary
Community guide to securing and improving privacy on macOS.
Red Teaming & Pentesting checklists for various engagements
smbclient-ng, a fast and user friendly way to interact with SMB shares.
Repository for advanced Red Team techniques focused on Rust
Dump cookies and credentials directly from Chrome/Edge process memory
A web-based markdown viewer optimized for Obsidian
Extracts emails and attachments saved in Microsoft Outlook's .msg files
An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻
A collection of awesome Command & Control (C2) frameworks, tools and resources for post-exploitation and red teaming assignments.
Tylous / ScareCrow
Forked from optiv/ScareCrowScareCrow - Payload creation framework designed around EDR bypass.