A list of public attacks on BitLocker

Intercept Windows Named Pipes communication using Burp or similar HTTP proxy tools

This is the tool to dump the LSASS process on modern Windows 11

LD_PRELOAD library to bypass TLS certificate verification for debugging and testing

open source process monitor

Binary Exploitation Phrack CTF Challenge

BOF for Kerberos abuse (an implementation of some important features of the Rubeus).

Request device ticket/token using the device's MSA

COFF file (BOF) for managing Kerberos tickets.

NTP Exfiltration Tool

A Python library for the Philips Hue system

An offensive toolkit for restless guests #DEFCON33

A deliberately vulnerable Microsoft Entra ID environment. Learn identity security through hands-on, realistic attack challenges.

A set of fully-undetectable process injection techniques abusing Windows Thread Pools

SCEP request tool for AD CS and Intune

An ADCS honeypot to catch attackers in your internal network.

Seamless remote browser session control

💾 Self-hosted online file converter. Supports 1000+ formats ⚙️

A tool for coercing and relaying Kerberos authentication over DCOM and RPC.

Permanently disable EDRs as local admin

Automating the MITM attack on WSUS

A simple Impacket-based tool to check a set of credentials against many Windows hosts and get permission for SMB shares.

(Sometimes partial) Python re-implementations of the technologies involved in reading various data sources in Chrome-esque applications.

The LevelDB key-value database in the Go programming language.

64-bit, position-independent implant template for Windows in Rust.

Rusty Injection - Shellcode Reflective DLL Injection (sRDI) in Rust (Codename: Venom)

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.