Run Cobalt Strike BOFs in Brute Ratel C4!

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

BetterBahn is an open-source project that aims to improve the train travel experience in germany. The current focus is on split-ticketing. However, further functions are planned to follow in the fu…

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Stealing Signatures and Making One Invalid Signature at a Time

game of active directory

Remote Desktop Protocol .NET Console Application for Authenticated Command Execution

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading

A collection of weird ways to execute unmanaged code in .NET

Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

Enumerate and disable common sources of telemetry used by AV/EDR.

Open-source Windows and Office activator featuring HWID, Ohook, TSforge, KMS38, and Online KMS activation methods, along with advanced troubleshooting.

An interactive TUI tool to create Brute Ratel C4 profiles based on BURP browsing data.

Good CLR Host with Native patchless AMSI Bypass

pwning IPv4 via IPv6

Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

A collection of Azure AD/Entra tools for offensive and defensive security purposes

Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)

PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.

Spartacus DLL/COM Hijacking Toolkit

Awesome EDR Bypass Resources For Ethical Hacking

Multilayered AV/EDR Evasion Framework

Mangle is a tool that manipulates aspects of compiled executables (.exe or DLL) to avoid detection from EDRs

A WIP shellcode loader tool which bypasses AV/EDR, coded in C++, and equipped with a minimal builder.

Impacket is a collection of Python classes for working with network protocols.