{{ message }}
Starred repositories
A custom PowerShell script for generating a reverse shell which is dynamically obfuscated each time it is ran
HWSyscalls is a new method to execute indirect syscalls using HWBP, HalosGate and a synthetic trampoline on kernel32 with HWBP.
LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
Tool for Active Directory Certificate Services enumeration and abuse
Various *nix tools built as statically-linked binaries
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
Pequeña guia que hice sobre el desarrollo de malware y tecnicas que son usadas
Fast passive subdomain enumeration tool.
A tool for parsing breached passwords
A OWASP Based Checklist With 500+ Test Cases
The fastest and complete solution for domain recognition. Supports screenshoting, port scan, HTTP check, data import from other tools, subdomain monitoring, alerts via Discord, Slack and Telegram, …
A repo which contains POCs for the Direct Syscalls video on my channel
Collection of PoC and offensive techniques used by the BlackArrow Red Team
A post exploitation framework designed to operate covertly on heavily monitored environments
Binaries, PowerShell scripts and information about Digital Signature Hijacking.
A PowerShell script which can be used to XOR encrypt your shellcode!
This program is designed to demonstrate various process injection techniques
Abusing Windows fork API and OneDrive.exe process to inject the malicious shellcode without allocating new RWX memory region.
Various PowerShell scripts that may be useful during red team exercise
A Windows reverse shell payload generator and handler that abuses the http(s) protocol to establish a beacon-like reverse shell.