Uses Threat-Intelligence ETW events to identify shellcode regions being hidden by fluctuating memory protections

Dumping App Bound Protected Credentials & Cookies Without Privileges.

🧙‍♂️ Node.js Command & Control for Script-Jacking Vulnerable Electron Applications

Build Real-Time Knowledge Graphs for AI Agents

Poor man's HyperV netcat

Fuzzing Harness and Unpatched Crash Results from Fuzzing Defender MpEngine

Identity-based, multi-site remote access platform using WireGuard®

Red-Team Linux kernel rootkit

A collection of Azure AD/Entra tools for offensive and defensive security purposes

Research into Undocumented Behavior of Azure AD Refresh Tokens

A comprehensive list of usable Entra ID first-party clients with pre-consented Microsoft Graph scopes, in a simple YAML-file explorable with a simple HTML GUI.

🦊 An interactive CLI for creating conventional commits.

Installing wazuh SIEM Unified XDR and SIEM protection

Installing wazuh agents Unified XDR and SIEM protection on Ludus Ranges

Running mutt and friends in a containerised sandbox

A collection of LLVM transform and analysis passes to write shellcode in regular C

Waiting Thread Hijacking - injection by overwriting the return address of a waiting thread

Code execution exploit for Tony Hawk's video game series

ForsHops

A variety of AV evasion techniques written in C# for practice.

Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options

Collection of UAC Bypass Techniques Weaponized as BOFs

Boilerplate to develop raw and truly Position Independent Code (PIC).

Bypass LSA protection using the BYODLL technique

A suite of services (SOCKS, FTP, shell, etc.) over Citrix, VMware Horizon and native Windows RDP virtual channels.

Collection of scripts and CMake files to easily link to LLVM into your project (Windows, Linux, macOS).