Stars
Find zero-days while you sleep. DeepZero is an automated vulnerability research framework that parses, decompiles, and analyzes thousands of Windows kernel drivers for exploitable IOCTLs natively u…
Tools for interacting with authentication packages using their individual message protocols
A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, without touching LSASS process memory.
SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) through a SOCKS5 proxy.
xforcered / SoaPy
Forked from logangoins/SOAPySoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
Collection of Cyber Threat Intelligence sources from the deep and dark web
A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
Original Proof-of-Concepts for React2Shell CVE-2025-55182
Pre-auth RCE in React Server Components versions 19.0.0, 19.1.0, 19.1.1, and 19.2.0.
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
JJK96 / CredMaster
Forked from knavesec/CredMasterRefactored & improved CredKing password spraying tool, uses FireProx or OmniProx APIs to rotate IP addresses, stay anonymous, and beat throttling
A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
Toolset to manipulate RPC clients by finding delayed services and masquerading as them
A set of tools and exploits to cause DoS for remote Windows Server & Windows 11 machines
Malicious PixelCode is a security research project that demonstrates a covert technique for encoding executable files into pixel data and storing them inside images or videos. A lightweight loader …
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
A SOCKS proxy written in Python that randomizes your source IP address. Round-robin your evil packets through SSH tunnels or give them billions of unique source addresses!
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
Hide Your Secret Message in any Wave Audio File.
⚡ Worlds fastest steghide cracker, chewing through millions of passwords per second ⚡
LiquidFun / stegowav
Forked from robert461/cyber-securityHide information in the wave data of .wav file by using the least significant bits
Claude Code is an agentic coding tool that lives in your terminal, understands your codebase, and helps you code faster by executing routine tasks, explaining complex code, and handling git workflo…
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
A Post-exploitation Toolset for Interacting with the Microsoft Graph API