Everything integration for the Windows taskbar.

File Converter is a very simple tool which allows you to convert and compress files using the context menu in windows explorer.

Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

Steamless is a DRM remover of the SteamStub variants. The goal of Steamless is to make a single solution for unpacking all Steam DRM-packed files. Steamless aims to support as many games as possible.

🖥️ P2P Remote Desktop - Portable, No Configuration or Installation Needed.

Deserialization payload generator for a variety of .NET formatters

Open source obfuscation tool for .NET assemblies

掩日 - 免杀执行器生成工具

Identifies the bytes that Microsoft Defender flags on.

Set of tools to analyze Windows sandboxes for exposed attack surface.

Undetectable Fast Portable VPN

Active Directory certificate abuse.

SharpSploit is a .NET post-exploitation library written in C#

Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS

Xeno-RAT is an open-source remote access tool (RAT) developed in C#, providing a comprehensive set of features for remote system management. Has features such as HVNC, live microphone, reverse prox…

CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.

SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.

The Hunt for Malicious Strings

RunasCs - Csharp and open version of windows builtin runas.exe

SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by…

Pillager是一个适用于后渗透期间的信息收集工具

SigFlip is a tool for patching authenticode signed PE files (exe, dll, sys ..etc) without invalidating or breaking the existing signature.

A method of bypassing EDR's active projection DLL's by preventing entry point exection

C# Data Collector for BloodHound

PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as well.

A tool to elevate privilege with Windows Tokens

A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.

PowerShell rebuilt in C# for Red Teaming purposes

Windows 权限提升 BadPotato

OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises.