Cross Compatible Command and Control

LoRa mesh radio pentesting tool

A curated list of awesome privilege escalation

PoC presented at SOCON-2025 demonstrating the ability to bypass Office documents sandbox using Terminal Preferences

PoC presented at SOCON-2025 demonstrating the ability to bypass Office documents sandbox using specifically crafted macro

MCP Server for Ghidra

FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loading

Enumerate and disable common sources of telemetry used by AV/EDR.

C# Based Universal API Unhooker

A tool to kill antimalware protected processes

Exploit PoC for CVE-2024-32002

CVE-2024-32002 RCE PoC

Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

Kerberos manipulation library in pure Python

Wordlists for creating statistically likely username lists for use in password attacks and security testing

Console command lines, security tools and some useful macros to automate this repository's tools. (MacOs, Linux, Windows)

RpcView is a free tool to explore and decompile Microsoft RPC interfaces

Tool for Active Directory Certificate Services enumeration and abuse

A lightweight dynamic instrumentation library

The ultimate WinRM shell for hacking/pentesting

Pentest Report Generator

A set of periodic note templates for Obsidian.md.

Living Off The Land Drivers

Splunk Security Content

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

A repository of curated datasets from various attacks

The world’s fastest framework for building websites.