A PowerShell module for the Defender XDR portal

A prompt-based pipeline for finding, validating, and proving vulnerabilities using LLM sub-agents.

A powerful command-line interface for interacting with the [RapidDNS API](https://rapiddns.io/help/api). This tool allows you to perform DNS searches, advanced queries, and large-scale data exports…

✨ Fully autonomous AI Agents system capable of performing complex penetration testing tasks

157 models. 30 providers. One command to find what runs on your hardware.

A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, without touching LSASS process memory.

Detection intelligence turbocharged with Al.

Windows Error Reporting ALPC Elevation of Privilege (CVE-2026-20817) - Proof-of-Concept exploit demonstrating local privilege escalation via WER service.

Exploitation of CVE-2025-29969

Proxifier Alternative to redirect any Windows/MacOS TCP and UDP traffic to HTTP/Socks5 proxy

GitHub Action to alert on security patches before the CVE drops.

Automated Pass-the-Ticket (PtT) attack. Standalone alternative to Rubeus and Mimikatz for this attack, implemented in C++ and Python.

High-speed, multi-threaded APT hunting tool designed for lateral movement detection and forensic artifact discovery in Windows environments via SMB.

The Mimikatz Missing Manual

KPP bypass with alternative syscall pipeline

A stager and implant that executes remote Web Assembly

Cobalt Strike BOF to freeze EDR/AV processes and dump LSASS using WerFaultSecure.exe PPL bypass

Tool that gathers a customizable set of ETW telemetry and generates user-defined detections

A curated collection of the strongest NotebookLM slide prompts sourced from the real creative underground . Your go-to resource for AI powerpoint :P

A curated list of penetration testing and ethical hacking tools, organized by category. This compilation includes tools from Kali Linux and other notable sources.

A collection of awesome penetration testing resources, tools and other shiny things

Complete Claude Code configuration collection - agents, skills, hooks, commands, rules, MCPs. Battle-tested configs from an Anthropic hackathon winner.

LuaN1ao (鸾鸟) is an autonomous penetration testing agent based on state awareness and causal reasoning.

PowerShell collector for adding SCCM attack paths to BloodHound with OpenGraph

COM-based folder creation via Shell Window process POC reverse-engineered from Turla’s Kazuar v3 loader.

Patchless ETW & AMSI bypass POC reverse-engineered from Turla’s Kazuar v3 loader.