Dread

Over-the-wire traffic sniffer meant to be used as an open-source alternative to closed-source sniffers currently on the market. In addition, it is to be used to educate those who do not have experience in network-oriented programming.

A C++20 library for CoinGecko--a cryptocurrency data service.

A C++17 header-only library to easily retrieve hashes/HMACs from data, files, and files in nested directories through a simple interface.

A C++17 library to access the entire OpenAI API.

No description.

Generate polymorphic, position-independent virtual machines (PIVMs) from arbitrary x86/x64 shellcode.

Offensive-security research tool that wraps x86 and x64 Windows shellcode in a per-build polymorphic virtual machine with a per-run cipher, reducing signature-based detection.

A tool that will hack literally anything on the planet. If you get your hands on this tool, be ready to get put behind bars.

Pretty markdown file for Github profile visitors.

Disclosure for CVE-2025-61156, an insecure access control, kernel-mode vulnerability found in ThreatFire System Monitor abused in the wild for BYOVD and EDR evasion.

Command-line tool for setting any custom Discord Rich Presence status.

An easy-to-use application to check for DNS leaks!

Repository for pages.dreadsec.me where I place all my written research papers--and papers I have written out of boredom.

Disclosure for CVE-2025-63602, including a PoC for use of an insecure driver in Awesome Miner 11.2.4 leading to arbitrary kernel read/write to MSRs, resulting in kernel code execution.

A simple network manipulation application. Allows users to dynamically drop, drop a percentage of, or add latency to packets matching a user-defined or pre-compiled filter.

A quick-cut method of setting up a basic, operational TOR node--be it an Exit, Relay, or Bridge node!

http://sourceforge.net/projects/ezoptionparser/

An issue in Unistal Systems Pvt. Ltd. Protegent 360 v2.0.0.4 allows a local attacker to escalate privileges via a kernel mode driver.

A Fast and Easy to use microframework for the web.

An issue in Unistal Systems Pvt. Ltd. Protegent 360 v2.0.0.4 allows a local attacker to escalate privileges via the kernel driver pgsecdl.sys

An issue in Unistal Systems Pvt. Ltd. Protegent 360 v2.0.0.4 allows a local attacker to escalate privileges via the kernel driver pgsecdl.sys

An issue in Unistal Systems Pvt. Ltd. Protegent 360 v2.0.0.4 allows a local attacker to cause a denial of service in the kernel.

Personal blog repository.

A State-based logic vulnerability in VMWare Workstation Pro's Kernel NUIF

QuTiP: Quantum Toolbox in Python

C++ Requests: Curl for People, a spiritual port of Python Requests.

WinDivert: Windows Packet Divert

Tools for Kerberos PKINIT and relaying to AD CS

Tool for Active Directory Certificate Services enumeration and abuse

BloodyAD is an Active Directory Privilege Escalation Framework

Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.

Six Degrees of Domain Admin

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

EDK II

Python version of the C# tool for "Shadow Credentials" attacks