Stars
Redirecting (specific) TCP, UDP and ICMP traffic to another destination.
Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by (ab)using LDAP Ping requests (cLDAP)
Gopacket is a clean Go implementation of Impacket, a library intended for working with network protocols.
Teams-first Multi-agent orchestration for Claude Code
AI agent skills for startup validation, competitive intelligence, and planning
AI agents running research on single-GPU nanochat training automatically
Visual testing tool for MCP servers
A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTAPI for various operations.
Original Proof-of-Concepts for React2Shell CVE-2025-55182
A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
AzureADRecon is a tool which gathers information about the Azure Active Directory and generates a report which can provide a holistic picture of the current state of the target environment.
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
A revamped and updated version of my original OneRuleToRuleThemAll hashcat rule
Blind XSS Scanner is a tool that can be used to scan for blind XSS vulnerabilities in web applications.
Pass in a list of URLs with query strings, get back a unique list of URLs and query string combinations
SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.
Beacon Object File & C# project to check LDAP signing
A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA server using the MS-WCCE protocol over DCOM and It bypasses …