Command-line JSON processor

A little tool to play with Windows security

Defeating Windows User Account Control

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

A readline wrapper

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and re…

JWT brute force cracker written in C

PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.

Small tool to capture packets from wlan devices.

CVE-2021-4034 1day

Situational Awareness commands implemented using Beacon Object Files

A network sniffer that logs all DNS server replies for use in a passive DNS setup

Remote operations commands implemented using Beacon Object Files

C/C++ source obfuscator for antivirus bypass

some vul

Windows 10 UAC bypass for all executable files which are autoelevate true .

Evade sysmon and windows event logging

Collection of remote authentication triggers in C#

Skrull is a malware DRM, that prevents Automatic Sample Submission by AV/EDR and Signature Scanning from Kernel. It generates launchers that can run malware on the victim using the Process Ghosting…

The IKE Scanner

This repository created for personal use and added tools from my latest blog post.

Technical notes, AD pentest methodology, list of tools, scripts and Windows commands that are useful for internal penetration tests and assumed breach exercises (red teaming).

NTDS.dit offline dumper with non-elevated

Combining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider

uefi diskless persistence technique + OVMF secureboot bypass

Exploits that are mostly ready to use. They either require no modification or have been modified and verified as functional.

Unified repository for different Metasploit Framework payloads