Stars
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
Multi-Packer wrapper letting us daisy-chain various packers, obfuscators and other Red Team oriented weaponry. Featured with artifacts watermarking, IOCs collection & PE Backdooring. You feed it wi…
Find, verify, and analyze leaked credentials
Secret Magpie - Secret Detection Tool
High-performance In-browser LLM Inference Engine
🐢 Open-Source Evaluation & Testing for ML models & LLMs
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
Writing custom backdoor payloads with C# - Defcon 27 Workshop
a repository that contains the program.cs source file that has D/Invoke bare minimum implementation and AES encryption for shellcode execution
Mantis is a security framework that automates the workflow of discovery, reconnaissance, and vulnerability scanning.
SessionProbe is a multi-threaded tool designed for penetration testing and bug bounty hunting. It evaluates user privileges in web applications by taking a session token and checking access across …
OpenVPN server installer for Ubuntu, Debian, AlmaLinux, Rocky Linux, CentOS, Fedora, openSUSE, Amazon Linux 2 and Raspberry Pi OS
Set up your own OpenVPN server on Debian, Ubuntu, Fedora, CentOS or Arch Linux.
PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy
Contains all the material from the DEF CON 31 workshop "(In)direct Syscalls: A Journey from High to Low".
List of Awesome Red Teaming Resources
A web front-end for password cracking and analytics
Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share th…
Template-Driven AV/EDR Evasion Framework
InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditiona…
The poc for CVE-2022-26809 RCE via RPC will be updated here.
Situational Awareness commands implemented using Beacon Object Files
Collection of some of my own tools with other great open source tools out there packaged into a powershell module
A unique technique to execute binaries from a password protected zip