SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature.

An open source (GPLv3) deobfuscator and unpacker for Eziriz .NET Reactor

Antivirus evasion project

Remote Desktop Protocol .NET Console Application for Authenticated Command Execution

C# Data Collector for BloodHound

A C# Command & Control framework

广告滚蛋 - 删除 Win11 各处广告的小工具 - OFGB Chinese localized fork

Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.

Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!

A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.

Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.

Network pings and other utilities

StandIn is a small .NET35/45 AD post-exploitation toolkit

SharpDecryptPwd source, To Decrypt Navicat,Xmanager,Filezilla,Foxmail,WinSCP,etc

A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.

Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).

Threadless Process Injection using remote function hooking.

Dump Azure AD Connect credentials for Azure AD and Active Directory

FlashPatch! Play Adobe Flash Player games in the browser after January 12th, 2021.

A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.

SharpHostInfo是一款快速探测内网主机信息工具（深信服深蓝实验室天威战队强力驱动）

Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework

WPE x64 is a Windows software that can intercept and modify WinSock packets, with adaptive support for 32-bit and 64 bit target programs WPE x64 是一款可以拦截并修改 WinSock 封包的 Windows 软件，自适应支持 32 位及 64 位的目标程序

CLI tool that allows you to convert your VS Code color theme to a VS 2022 color theme.

DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the default settings).

.NET Project for Attacking vCenter

通过截图或摄像头扫描二维码（支持ZXing、Zbar、OpenCV-WechatQrCode库） | Scan codes from screenshots and cameras

将shellcode用rsa加密并动态编译exe，自带几种反沙箱技术。

👀 Windows Application for protecting your eyes

.NET/PowerShell/VBA Offensive Security Obfuscator