Python tool to automatically perform SPN-less RBCD attacks.

Native API header files for the System Informer project.

BOF to run PE in Cobalt Strike Beacon without console creation

A tool for coercing and relaying Kerberos authentication over DCOM and RPC.

An example reference design for a proposed BOF PE

Linker for Beacon Object Files

Multi-instance Ghidra plugin with HATEOAS REST API and MCP bridge for AI-assisted reverse engineering, binary analysis, and decompilation

Windows process injection methods

beta

A bunch of parsers for PE and PDB formats in C++

Robust Cobalt Strike shellcode loader with multiple advanced evasion features

Multiplayer Mode for Obsidian

The DataExplorer plugin integrates the pattern language from ImHex into x64dbg.

Cobalt Strike BOF for evasive .NET assembly execution

SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.

Ratnet is a prototype anonymity network for mesh routing and embedded scenarios.

PoC module to demonstrate automated lateral movement with the Havoc C2 framework.

AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses

Just another Windows Process Injection

A PoC of the ContainYourself research presented in DEFCON 31, which abuses the Windows containers framework to bypass EDRs.

Lateral Movement Using DCOM and DLL Hijacking

KMS Server Emulator written in Python

Linux kernel source tree

A library for detecting known secrets across many web frameworks

Reverse engineering winapi function loadlibrary.

A PowerShell console in C/C++ with all the security features disabled

Generate and Manage KeyCredentialLinks

Windows memory hacking library