Proof-of-Concept tool for extracting NTLMv1 hashes from sessions on modern Windows systems.

Advanced Active Directory network topology analyzer with SMB validation, multiple authentication methods (password/NTLM/Kerberos), and comprehensive network discovery. Export results as BloodHound‑…

Fake API Server for AI-Bypass

This is the tool to dump the LSASS process on modern Windows 11

KittyLoader is a highly evasive loader written in C / Assembly

Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE.

A hoontr must hoont

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug b…

RPC to WebClient startup

Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.

An archive of 0day.today exploits

LEAKEY is a bash script which checks and validates for leaked credentials. The idea behind LEAKEY is to make it highly customizable and easy to add checks for new services.

Complete list of LPE exploits for Windows (starting from 2023)

DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the ori…

Obfuscate Go builds

A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.

Pre-compiled builds for CVE-2021-4034

Reflective PE packer.

"AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS

Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)

Ask a TGS on behalf of another user without password

EDR Lab for Experimentation Purposes

Weaponized HellsGate/SigFlip

HVNC for Cobalt Strike

PowerShell Obfuscator

Agents for https://github.com/kraken-ng/Kraken

Kraken, a modular multi-language webshell coded by @secu_x11