Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Pers…

a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )

Directory Services Internals (DSInternals) PowerShell Module and Framework

Active Directory certificate abuse.

SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by…

A C# Command & Control framework

A tool to download all Pwned Passwords hash ranges and save them offline so they can be used without a dependency on the k-anonymity API

SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

StandIn is a small .NET35/45 AD post-exploitation toolkit

SMBeagle - Fileshare auditing tool.

A tool that shows detailed information about named pipes in Windows

Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)

OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at startup

Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!

Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments.

.NET post-exploitation toolkit for Active Directory reconnaissance and exploitation

Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain

Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking

A BloodHound collector for Microsoft Configuration Manager

Okta Verify and Okta FastPass Abuse Tool

A TLS MITM proxy for TCP/TLS/UDP traffic, with support for TLS upgrades like STARTTLS, PostgreSQL, and more.

A PHP backdoor management and generation tool/C2 featuring end to end encrypted payload streaming designed to bypass WAF, IDS, SIEM systems.

comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reduction (ASR) rules without Admin privileges

Spoofing desktop login applications with WinForms and WPF

Local SYSTEM auth trigger for relaying

load shellcode without P/D Invoke and VirtualProtect call.

C# Utilities for Windows Notification Facility

Deserialization payload generator for a variety of .NET formatters