Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)

An extremely fast Python linter and code formatter, written in Rust.

XLL Phishing Tradecraft

Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but for security research and penetration testing! 🎫

Elastic Security Labs' malware analysis and reverse engineering library

A Malware Evasion Technique, shellcode generation, syntax modification, anti-dynamic analysis & PE header modification.

LSASS memory dumper using only NTAPIs, creating a minimal minidump. It can be compiled as shellcode (PIC), supports XOR encryption, and remote file transmission.

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique present…

Evasion kit for Cobalt Strike

AuditKit - Multi-Cloud Compliance Scanner & Evidence Collection

adws enumeration bof

Templates for developing your own listeners and agents for AdaptixC2.

Autoswagger by Intruder - detect API auth weaknesses

PoC for popping a system shell against the LnvMSRIO.sys driver

Obex – Blocking unwanted DLLs in user mode

Supporting PoCs and scripts for my talk "OverLAPS: Overriding LAPS Logic"

Tokenex is a Go library that securely exchanges identity tokens for temporary cloud credentials, with built-in support for AWS, GCP, Azure, OCI, Kubernetes, and OAuth2.

IP Rotation from different providers - Like FireProx but for GCP, Azure, Alibaba and CloudFlare

sl0ppy-PrivescTaskCreator.ps1

Simple DNS Rebinding Service

Latest CVEs with their Proof of Concept exploits.

A simple Python script to do quick, targeted recon of a given domain.

RunPE implementation with multiple evasive techniques

POC for Veeam Backup and Replication CVE-2023-27532

Tool to audit and attack LAPS environments

A collection of PowerShell scripts for analyzing data from Microsoft 365 and Microsoft Entra ID

Windows protocol library, including SMB and RPC implementations, among others.

EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.

Buttercup finds and patches software vulnerabilities