🖥️ P2P Remote Desktop - Portable, No Configuration or Installation Needed.

Run PowerShell with rundll32. Bypass software restrictions.

A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.

Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.

Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading

Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)

.NET 2.0 CLR project to retrieve saved browser credentials from Google Chrome, Mozilla Firefox and Microsoft Internet Explorer/Edge.

Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments.

A User Impersonation tool - via Token or Shellcode injection

Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domain joined machies

Run Rubeus via Rundll32