adws enumeration bof

Python3 o365 User Enumeration Tool

An App Domain Manager Injection DLL PoC on steroids

Dataset with labeled benign and malicious files 🗃️

transform your payload into ipv4/ipv6/mac arrays

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

A Beacon Object File (BOF) for Havoc/CS to Bypass PPL and Dump Lsass

A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread

Multilayered AV/EDR Evasion Framework

A lightweight redirector for Google Cloud Run, enabling domain fronting via Google-owned infrastructure.

Metamorphic cross-compilation of C++ & C-code to PIC, BOF & EXE.

Project for tracking publicly disclosed DLL Hijacking opportunities.

Audits an AppLocker policy XML and reports weak/misconfigured/risky settings, including actual ACL checks.

Random BOFs for LDAP tradecraft

Direct access to NTFS volumes

COM-based DLL Surrogate Injection

Apache Directory - SCIMple

SCIM 2.0 Server implementation for Laravel

A free Windows-compatible Operating System

ScriptSentry finds misconfigured and dangerous logon scripts.

Small and highly portable detection tests based on MITRE's ATT&CK.

Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.

A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.

Apply a divide and conquer approach to bypass EDRs

A BOF to automate common persistence tasks for red teamers

Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.

Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3

Use Impacket's MS-TSCH implementation to remotely manage scheduled tasks

Roast in the Middle

POC tool to abuse windows server failover clusters