A method of bypassing EDR's active projection DLL's by preventing entry point exection

Spartacus DLL/COM Hijacking Toolkit

PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as well.

PowerShell rebuilt in C# for Red Teaming purposes

Framework for Kerberos relaying

SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

PurpleSharp is a C# adversary simulation tool that executes adversary techniques with the purpose of generating attack telemetry in monitored Windows environments

StandIn is a small .NET35/45 AD post-exploitation toolkit

Sandman is a NTP based backdoor for hardened networks.

SharpWMI is a C# implementation of various WMI functionality.

SMBeagle - Fileshare auditing tool.

C# Script used for Red Team

Self-developed tools for Lateral Movement/Code Execution

SharpDump is a C# port of PowerSploit's Out-Minidump.ps1 functionality.

Original PoC for CVE-2023-32784

Get file less command execution for lateral movement.

Kusto Query Language is a simple and productive language for querying Big Data.

DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the default settings).

View ETW Provider manifest

it is very good

Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments.

C# tool for UAC bypasses

Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry

Dev Tunnels SDK

.NET Project for performing Authenticated Remote Execution

Self-hosted VirusTotal / MetaDefender wannabe with API, demo UI and Scanners running in Docker.

Abusing Azure services over C2