Polymorphic PE rewriter for Windows x64 , rewrites binaries into semantically identical but byte-different variants

claude-red is a curated library of offensive security skills designed for the Claude skills system. Each skill is a structured SKILL.md file that primes Claude with expert-level methodology for a s…

x64 PE bin2bin obfuscator which doesn't add a section to the binary

Static analysis & exploitation-triage toolkit for Windows kernel drivers. Discover IOCTLs, Symbolic Links, and check cert , and Downlaods BYOVD

Adaptix C2 agent using Crystal Palace PIC linker and PICO module system

A little tool to play with Windows security

Lnk crafting and research tools

Dominate the domain. Relay to royalty.

MCP configuration to connect AI agent to a Linux machine.

Generate DLL proxy/sideload projects. Automatically parses PE export tables and generates ready-to-compile project for red team engagements.

MCP server for AdaptixC2

Shannon Lite is an autonomous, white-box AI pentester for web applications and APIs. It analyzes your source code, identifies attack vectors, and executes real exploits to prove vulnerabilities bef…

A SOCKS proxy for Citrix.

📡 Bypass DPI firewalls by disguising TCP traffic as IMAP email communication with this high-speed tunnel proxy solution.

Beacon Object File (BOF) port of DumpGuard for extracting NTLMv1 hashes from sessions on modern Windows systems.

Fuzz 401/403/404 pages for bypasses

Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC

AppLocker-Based EDR Neutralization

Agent for AdaptixC2 with focus in evasion, capability and malleable.

DPAPI looting remotely and locally in Python

A Browser Extension and Userscript that displays country flags 🇺🇸 and device icons 📱 next to every X (Twitter) username. Know who you're interacting with—their location and platform—at a glance. Bo…

Indirect-Shellcode-Executor expoits the miss-configuration/vulnerability present on the API Windows method ReadProcessMemory discovered by DarkCoderSc. It exploits the nature of the in/out pointer …

Embed malware, apks, executables or any other binary file into a PDF, or generate a PDF with malicious link encrusted.

Open-source AI hackers to find and fix your app’s vulnerabilities.

SilentButDeadly is a network communication blocker specifically designed to neutralize EDR/AV software by preventing their cloud connectivity using Windows Filtering Platform (WFP). This version fo…

Crossplatform tool for inject shellcode into .exe and .dll binaries (x86 and x64)

Permanently disable EDRs as local admin

A lightweight Rust library for obfuscating strings and control-flow using cryptify

An ARM64 Linux ELF Packer/Loader

Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)