Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

A cross-platform, collaborative C2 for red-teaming. Agents are cross-compilable (e.g, you can generate Windows DLLs on Linux), cross-compatible, and built with evasion, anti-analysis and stability …

A low-latency C++ generator inspired by Fix8, creating encoder, decoder, and message classes from a custom YAML schema for the Binary Order Entry (BOE) protocol. Lightweight and flexible, it suppor…

Resumo para o OSEP

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

The recursive internet scanner for hackers. 🧡

Semi-automated, feedback-driven tool to rapidly search through troves of public data on GitHub for sensitive secrets.

Automated security lab provisioning

JamfHound is a python3 project designed to collect and identify attack paths in Jamf Pro tenants based on existing object permissions by outputting data as JSON for ingestion into BloodHound.

Official git repo for iodine dns tunnel

Poc, Presentation of Monitor OSD Exploitation, and shenanigans of high quality.

A dedicated place for cool golang security projects

OnlyRAT is the only RAT you'll ever need. We will be able to use this tool to remotely command and control windows computers.Once installed we will have remote administrative access to our target t…

Scripts for solving WebSecurity Academy labs of PortSwigger using Python

A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.

🎵 Official source code and writeups for SekaiCTF 2023!

Security-oriented list of resources about industrial network protocols.

Oh my tmux! My self-contained, pretty & versatile tmux configuration made with 💛🩷💙🖤❤️🤍

Rockyou for web fuzzing

PDF Files for Pentesting

Exploits Password Reset Vulnerability in OpenCRX, CVE-2020-7378. Also maintains Stealth by deleting all the password reset mails created by the script

Tips on how to write exploit scripts (faster!)

A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (CVE-2024-6387)

game of active directory

An easily modifiable shellcode template for Windows x64 written in C

Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)

bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)