Open-source keyboard firmware for Atmel AVR and Arm USB families

Flipper Zero firmware source code

Small and highly portable detection tests based on MITRE's ATT&CK.

A repository for learning various heap exploitation techniques.

Defeating Windows User Account Control

Course materials for Modern Binary Exploitation by RPISEC

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Experimental PlayStation 4 emulator.

transparent TCP-to-proxy redirector

Simple (relatively) things allowing you to dig a bit deeper than usual.

A readline wrapper

Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.

The swiss army knife of LSASS dumping

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

Console-based pandora.com player

Situational Awareness commands implemented using Beacon Object Files

Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

A tool to kill antimalware protected processes

A high performance X11 animated wallpaper setter

Windows Privilege Escalation from User to Domain Admin.

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

A modern 32/64-bit position independent implant template

Original C Implementation of the Hell's Gate VX Technique

Another Windows Local Privilege Escalation from Service Account to System

C/C++ source obfuscator for antivirus bypass

Cobalt Strike UDRL for memory scanner evasion.