Situational Awareness commands implemented using Beacon Object Files

Circumventing "noexec" mount flag to execute arbitrary linux binaries by ptrace-less process injection

source code for the examples and topics from the book

Execute shellcode files with rundll32

Enumerate and disable common sources of telemetry used by AV/EDR.

Visual Studio Project/DLL that can be used to test DLL Hijacking or launched via RUNDLL32

Rust Programming Fundamentals - one course to rule them all, one course to find them...

Unpacked tools of CQAcademy

Cover your tracks during Linux Exploitation by leaving zero traces on system logs and filesystem timestamps. 👻🐚

Updated ConfuserEX, an open-source, free obfuscator for .NET applications

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

Restoration of the original corkami wiki

Vulnerable server used for learning software exploitation

Linux kernel source tree

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.

Resources for Windows exploit development

AV/EDR evasion via direct system calls.

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…