Stars
Utilizng an MCP Server to communicate with your C2
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
Extract and execute a PE embedded within a PNG file using an LNK file.
The Roslyn .NET compiler provides C# and Visual Basic languages with rich code analysis APIs.
Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).
This project is aimed at freely providing technical guides on various hacking topics.
Hidden Fuzzer is a URL fuzzing tool designed to uncover hidden paths and resources on web applications. It features multithreading, customizable HTTP headers, and request parameters for optimized p…
GoPhish Templates that I have retired and/or templates I've recreated.
Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
large hashcat rulesets generated from real-world compromised passwords
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
a DLL that will show a MessageBox with the message, "Hello world!"
A unique technique to execute binaries from a password protected zip
A red team tool that assists into extracting/dumping master credentials and/or entries from different password managers.
Exploits with pwntools library in Python3. ROP, BOF, SHELLCODE.
OSINT Project. Collect information from a mail. Gather. Profile. Timeline.
🔐 A CLI tool to extract server certificates
Threadless Module Stomping In Rust with some features (In memory of those murdered in the Nova party massacre)
LPE exploit for CVE-2023-36802
Mining URLs from Wayback Machine for bug hunting/fuzzing/further probing
Rust Weaponization for Red Team Engagements.
Basic vulnerability scanning to see if web servers may be vulnerable to CVE-2023-44487