Bring runZero Exposure Management into BloodHound

A Go library to create BloodHound OpenGraphs easily

Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)

IP Rotation from different providers - Like FireProx but for GCP, Azure, Alibaba and CloudFlare

Caddy v2 module to filter requests based on C2 profiles

Evasion kit for Cobalt Strike

A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsass

Lateral Movement Bof with MSI ODBC Driver Install

Internal Monologue BOF

Tool to enumerate privileged Scheduled Tasks on Remote Systems

A lightweight redirector for Google Cloud Run, enabling domain fronting via Google-owned infrastructure.

This is the tool to dump the LSASS process on modern Windows 11

Direct access to NTFS volumes

A cross-platform network monitoring terminal UI tool built with Rust.

A tool to interact with Windows drivers to perform a raw disk read and parse out target files without calling standard Windows file APIs

Backup tool for Proxmox PBS & PVE System Files with advanced features and notifications

Sync notes between local and cloud with smart conflict: S3 (Amazon S3/Cloudflare R2/Backblaze B2/...), Dropbox, webdav (NextCloud/InfiniCLOUD/Synology/...), OneDrive, Google Drive (GDrive), Box, pC…

Open-source tool for network discovery, visualization, and monitoring. Built with Go, FastAPI, and React, supports Docker host scanning.

Fully-replicated DNS and DHCP Server with ad-blocking powered by etcd

PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads

Automatically discover and visually document network topology.

A responsive monitoring platform for Proxmox VE, PBS, and Docker with real-time metrics across nodes and containers

These are policy-driven snapshot management and replication tools which use OpenZFS for underlying next-gen storage. (Btrfs support plans are shelved unless and until btrfs becomes reliable.)

SponsorBlock client for all YouTube TV clients.

A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.

wireguard_webadmin is an intuitive web interface for WireGuard VPN management, designed to simplify the configuration and oversight of VPNs. It supports multi-user access and multiple WireGuard ins…

Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE.

Intercept Windows Named Pipes communication using Burp or similar HTTP proxy tools