pydecipher: unfreeze and deobfuscate your frozen python code

Nosey Parker is a command-line tool that finds secrets and sensitive information in textual data and Git history.

Six Degrees of Domain Admin

Canary Detection

.NET Project for performing Authenticated Remote Execution

a CLI that provides a generic automation layer for assessing the security of ML models

Open-Source PE Packer

InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditiona…

A .NET Runtime for Cobalt Strike's Beacon Object Files

.NET Project for Attacking vCenter

SpecterOps Historical Records

C# Implementation of Jared Atkinson's Get-InjectedThread.ps1

GhostLoader - AppDomainManager - Injection - 攻壳机动队

A Bind Shell Using the Fax Service and a DLL Hijack

Tool to transplant a valid code signature from one Portable Executable (PE) binary to another.

Ps-Tools, an advanced process monitoring toolkit for offensive operations

This repo is the home of the official Visual Studio, Visual Studio for Mac, Visual Studio Subscriptions, and Scripting Technologies documentation for Microsoft.

A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.

Zipper, a CobaltStrike file and folder compression utility.

A PowerShell Module Dedicated to Reverse Engineering

PoC to interact with local/remote registry hives through WMI

Evading WinDefender ATP credential-theft

Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode

Extracting Clear Text Passwords from mstsc.exe using API Hooking.