A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it wi…

Find, verify, and analyze leaked credentials

Secret Magpie - Secret Detection Tool

SecGPT网络安全大模型

High-performance In-browser LLM Inference Engine

C Compiler written in Vim script

🐢 Open-Source Evaluation & Testing for ML models & LLMs

Retired TrustedSec Capabilities

A set of fully-undetectable process injection techniques abusing Windows Thread Pools

Writing custom backdoor payloads with C# - Defcon 27 Workshop

a repository that contains the program.cs source file that has D/Invoke bare minimum implementation and AES encryption for shellcode execution

Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.

SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across …

odin c2

OpenVPN server installer for Ubuntu, Debian, AlmaLinux, Rocky Linux, CentOS, Fedora, openSUSE, Amazon Linux 2 and Raspberry Pi OS

Set up your own OpenVPN server on Debian, Ubuntu, Fedora, CentOS or Arch Linux.

PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy

Adversary Emulation Framework

Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".

List of Awesome Red Teaming Resources

A web front-end for password cracking and analytics

Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share th…

Template-Driven AV/EDR Evasion Framework

InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditiona…

The poc for CVE-2022-26809 RCE via RPC will be updated here.

Situational Awareness commands implemented using Beacon Object Files

Collection of some of my own tools with other great open source tools out there packaged into a powershell module

A unique technique to execute binaries from a password protected zip

Notes