Skip to content
View m57's full-sized avatar
339 followers · 19 following

Achievements

Achievement: Arctic Code Vault ContributorAchievement: Pull SharkAchievement: Starstruckx3

Achievements

Achievement: Arctic Code Vault ContributorAchievement: Pull SharkAchievement: Starstruckx3

Block or report m57

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Stars

Showing results

rbnroot / CAPSlock

CAPSlock is an offline Conditional Access (CA) analysis tool built on top of a roadrecon database. It helps defenders, auditors, and red teams understand how Conditional Access policies actually be…

HTML 93 3 Updated May 16, 2026

bytewreck / DumpGuard

Proof-of-Concept tool for extracting credential material from protected sessions on modern Windows systems.

C 698 64 Updated May 9, 2026

123ojp / Spoof-TCP-Tigger-NAT-Traversal

This is a PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion

Python 19 Updated Jul 21, 2025

123ojp / VxLAN-Scanner

This is a VxLAN PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion

Python 31 2 Updated Jul 21, 2025

123ojp / GREtunnel-scanner

This is a GRE PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion

Python 98 9 Updated Aug 23, 2025

123ojp / Simple-H.323-NAT-Traversal

This is a PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion

Python 24 1 Updated Jul 21, 2025

S3cur3Th1sSh1t / Caro-Kann

Encrypted shellcode Injection to avoid Kernel triggered memory scans

C 423 46 Updated Sep 12, 2023

MEhrn00 / boflink

Linker for Beacon Object Files

Rust 188 15 Updated Jun 17, 2026

xaitax / Chrome-App-Bound-Encryption-Decryption

Bypass Chromium's App-Bound Encryption via Direct Syscall-based Reflective Process Hollowing. Extract cookies, passwords, payment methods & tokens from Chrome, Edge, Brave & Avast - fileless, user-…

C 1,649 274 Updated Feb 9, 2026

goshs-labs / goshs

Feature-rich single-binary file server for red teamers and developers. HTTP/S · WebDAV · FTP/SFTP · SMB · LDAP/S · NTLM hash capture · DNS/SMTP callbacks · TLS · Auth · Share links. A powerful pyth…

Go 890 49 Updated Jun 17, 2026

denniskniep / DeviceCodePhishing

This is a novel technique that leverages the well-known Device Code phishing approach. It dynamically initiates the flow when the victim opens the phishing link and instantly redirects them to the …

Go 199 27 Updated Sep 19, 2025

Flangvik / QRucible

Python utility that generates "imageless" QR codes in various formats

Python 140 5 Updated Aug 10, 2024

decoder-it / KrbRelayEx-RPC

C# 201 32 Updated Mar 28, 2025

xforcered / ForsHops

Forked from susMdT/ForsHops

ForsHops

C++ 154 15 Updated Mar 25, 2025

wunderwuzzi23 / ropci

So, you think you have MFA? AAD/ROPC/MFA bypass testing tool

Go 130 19 Updated Nov 21, 2022

praetorian-inc / NTLMRecon

A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.

Go 117 11 Updated Mar 31, 2026

dirkjanm / ROADtools

A collection of Azure AD/Entra tools for offensive and defensive security purposes

Python 2,637 378 Updated May 21, 2026

secureworks / family-of-client-ids-research

Research into Undocumented Behavior of Azure AD Refresh Tokens

Python 360 43 Updated Feb 23, 2024

xforcered / SoaPy

Forked from logangoins/SOAPy

SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.

Python 265 18 Updated Feb 21, 2025

CICADA8-Research / Spyndicapped

COM ViewLogger — new malware keylogging technique

C++ 407 57 Updated Jan 6, 2025

exo-explore / exo

Run frontier AI locally.

Python 45,401 3,250 Updated Jun 15, 2026

watchtowrlabs / Citrix-Virtual-Apps-XEN-Exploit

Citrix Virtual Apps and Desktops (XEN) Unauthenticated RCE

Python 201 24 Updated Nov 12, 2024

Macmod / godap

A complete terminal user interface (TUI) for LDAP.

Go 953 35 Updated Mar 4, 2026

An0nUD4Y / AV-EDR-Lab-Environment-Setup

AV/EDR Lab environment setup references to help in Malware development

468 40 Updated Feb 19, 2025

secureworks / BAADTokenBroker

PowerShell 128 18 Updated Jun 17, 2025

RedTeamPentesting / pretender

Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.

Go 1,288 95 Updated Apr 23, 2026

Cracked5pider / Stardust

A modern 32/64-bit position independent implant template

C 1,348 214 Updated Jun 1, 2026

RalfHacker / Kerbeus-BOF

BOF for Kerberos abuse (an implementation of some important features of the Rubeus).

C 592 74 Updated Nov 23, 2025

redteamsocietegenerale / DLLirant

DLLirant is a tool to automatize the DLL Hijacking researches on a specified binary.

C# 501 42 Updated Nov 29, 2022

matthieu-hackwitharts / Win32_Offensive_Cheatsheet

Win32 and Kernel abusing techniques for pentesters

C++ 980 137 Updated Sep 3, 2023
Next