20-day longest streak
-
Banshee ★ PINNED
Experimental Windows x64 Kernel Rootkit with anti-rootkit evasion features.
C++ ★ 605 10mo agoExplain → -
unKover ★ PINNED
Anti-Rootkit/Anti-Cheat Driver to uncover unbacked or hidden kernel code.
C++ ★ 334 3mo agoExplain → -
MogVMP ★ PINNED
Static devirtualizer for VMProtect 3.0-3.5. Lifts virtualized code to LLVM using Remill and strips the VM layer through optimization.
C++ ★ 265 17d agoExplain → -
PSXecute ★ PINNED
MIPS VM to execute payloads without allocating executable memory. Based on a PlayStation 1 (PSX) Emulator.
C++ ★ 127 1y agoExplain → -
GpuDecryptShellcode ★ PINNED
XOR decrypting shellcode using the GPU with OpenCL. Original PoC adopted by e.g. CoffeeLoader, GpuGate.
C++ ★ 126 1y agoExplain → -
1.6-C2 ★ PINNED
Using the Counter Strike 1.6 RCON protocol as a C2 Channel.
C++ ★ 95 1y agoExplain → -
BouncyGate ▣
Indirect Syscalls: HellsGate in Nim, but making sure that all syscalls go through NTDLL (as in RecycledGate).
Nim ★ 186 3y agoExplain → -
Red-Team-Advent-of-Code
Red Teaming / Pentesting challenges for my Advent-Of-Code 2021.
Nim ★ 105 4y agoExplain → -
Godmode
Tool for playing with Windows Access Token manipulation.
C ★ 84 3y agoExplain → -
MalwareAdventurez
My adventures in learning about different userland malware techniques, such as syscalls, injection, unhooking or sandbox evasion.
C++ ★ 81 2y agoExplain → -
SharpStartWebclient
Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
C# ★ 79 3y agoExplain → -
TriageMCP
Vibe Malware Triage - MCP server for static PE analysis.
Python ★ 78 6mo agoExplain → -
binaryshield-devirtualizer
LLVM based devirtualizer for the binaryshield software protector.
C++ ★ 75 1mo agoExplain → -
MicroSMT
IDA plugin for automatic deobfuscation of opaque predicates by lifting microcode to z3 for SMT reasoning.
Python ★ 75 1mo agoExplain → -
Invoke-Pre2kSpray
Enumerate domain machine accounts and perform pre2k password spraying.
PowerShell ★ 69 2y agoExplain → -
CredGuess
Generate password spraying lists based on the pwdLastSet-attribute of users.
Python ★ 55 2y agoExplain → -
drvtrace
WinDbg plugin to trace module transitions from a debugged driver.
C++ ★ 54 5mo agoExplain → -
NetRunner
A .NET assembly tracer using Harmony for runtime method interception.
C# ★ 51 7mo agoExplain → -
Papaya ▣
NoSQL Injection Tool to bypass login forms & extract usernames/passwords using regular expressions.
Python ★ 30 4y agoExplain → -
Karyo
[100% AI Generated Code] Lightweight LLVM Symbolic Execution Engine
C++ ★ 20 18d agoExplain → -
OffensiveHolyC
Red-Teaming TempleOS.
HolyC ★ 18 3y agoExplain → -
NimNightmare
CVE-2021-1675 LPE PoC in Nim (PrintNightmare Local Privilege Escalation)
Nim ★ 18 4y agoExplain → -
RDPassSpray ⑂
Python3 tool to perform password spraying using RDP
Python ★ 17 2y agoExplain → -
deepsea
Deepsearch leak database client, as an alternative for pwndb
Python ★ 15 3y agoExplain → -
UwuRatel
Pink BRC4 skin/theme.
★ 15 1y agoExplain → -
Talks
Repository for slide decks of public talks I've given.
★ 14 2mo agoExplain → -
UnXorStringsNet
Deobfuscation of XorStringsNet
C# ★ 13 1y agoExplain → -
Kernel-Adventures
Misc Windows Driver/Kernel PoCs that do not need a separate repo.
C++ ★ 12 1y agoExplain → -
JailWhale
Docker container escape enumeration tool.
Shell ★ 12 5y agoExplain → -
urlExtract
Recursively extract urls from a web page for reconnaissance.
Go ★ 12 2y agoExplain → -
ghidra-WDF-gdt
Ghidra .gdt files for parts of the Kernel Mode Driver Framework (KMDF) part of WDF.
C ★ 10 2y agoExplain → -
Web-Windows-Login-Phishing
Web based fake Windows Login Screen Phishing.
HTML ★ 9 3y agoExplain → -
nim-monero-rpc
Nim library for interacting with Monero wallets & nodes via RPC.
Nim ★ 8 3y agoExplain → -
Black-Metal-Lyric-Database
Database of Black Metal lyrics and additional metadata in .JSON-format for computer assisted text analysis projects.
Python ★ 6 6y agoExplain → -
OpenGL-Voxel-Engine
Voxel Game-Engine using OpenGL, created as a project to practice C++ and graphics programming.
C ★ 6 5y agoExplain → -
YA-PSX-EMU
Playstation (PSX) Emulator (WIP).
C++ ★ 6 3y agoExplain → -
scim
WIP raw socket packet manipulation library
Nim ★ 6 4y agoExplain → -
lunarfuzz
WIP: Directory fuzzer for single page apps that require a browser to render content, with an interface similar to ffuf
Go ★ 6 3y agoExplain → -
QuickShell
Generates quick one liner reverse shell payloads for lazy people.
Shell ★ 4 4y agoExplain → -
monero ⑂
Monero: the secure, private, untraceable cryptocurrency
C++ ★ 4 1y agoExplain → -
PyCheeseOunce
Another coercion method, using MS-EVEN ElfrOpenBELW.
Python ★ 4 3y agoExplain → -
elden_vt
No description.
JavaScript ★ 3 9mo agoExplain → -
toolbox-pentest-web ⑂
Docker toolbox for pentest of web based application.
★ 3 3y agoExplain → -
SharpTokenFinder ⑂
C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
C# ★ 2 1y agoExplain → -
CheeseOunce ⑂
Coerce Windows machines auth via MS-EVEN
C ★ 2 3y agoExplain → -
Bitmancer ⑂
Nim Library for Offensive Security Development
Nim ★ 2 3y agoExplain → -
CrystalCastle ▣
Your automated network enumeration watchtower.
Ruby ★ 2 5y agoExplain → -
myaut_contrib ⑂
mod to myaut2exe decompiler
★ 1 9y agoExplain → -
aadint ⑂
No description.
★ 1 3y agoExplain → -
HyperDash
Auto-Dash-Bot for Hyper Light Drifter.
C# ★ 1 5y agoExplain → -
nuclei-templates ⑂
Community curated list of templates for the nuclei engine to find security vulnerabilities.
★ 1 2y agoExplain → -
PrivescCheck ⑂
Privilege Escalation Enumeration Script for Windows
★ 1 2y agoExplain → -
Post-Exploitation
Post-exploitation modules I wrote for educational purposes.
C# ★ 1 4y agoExplain → -
powershell-intune-samples ⑂
This repository of PowerShell sample scripts show how to access Intune service resources. They demonstrate this by making HTTPS RESTful API requests to the Microsoft Graph API from PowerShell.
★ 1 3y agoExplain → -
KrbRelay ⑂
Framework for Kerberos relaying
★ 1 4y agoExplain → -
kerbrute ⑂
A tool to perform Kerberos pre-auth bruteforcing
★ 1 4y agoExplain → -
PSX-DEV
PSX homebrew development stuff.
C ★ 1 4y agoExplain → -
capa ⑂
The FLARE team's open-source tool to identify capabilities in executable files.
Python ★ 0 2mo agoExplain → -
eversinc33
No description.
★ 0 4mo agoExplain → -
SharpDPAPI ⑂
SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
★ 0 2y agoExplain → -
eversinc33.github.io
No description.
HTML ★ 0 3y agoExplain → -
SharpHoundCommon ⑂
Common library used by SharpHound.
C# ★ 0 3y agoExplain → -
SharpHound ⑂
C# Data Collector for BloodHound
C# ★ 0 3y agoExplain → -
buckett
ignore
★ 0 1y agoExplain → -
PowerSharpPack ⑂
No description.
★ 0 3y agoExplain → -
ItWasAllADream ⑂
A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE
Python ★ 0 3y agoExplain → -
PowerSploit ⑂
PowerSploit - A PowerShell Post-Exploitation Framework
★ 0 5y agoExplain → -
flare-vm ⑂
No description.
PowerShell ★ 0 3y agoExplain → -
zsh-autosuggestions ⑂
Fish-like autosuggestions for zsh
★ 0 3y agoExplain → -
sliver ⑂
Adversary Emulation Framework
★ 0 3y agoExplain → -
Docker-Dnscat2 ⑂
Dockerfile and ressources for Dnscat2
★ 0 9y agoExplain → -
GraphCrawler ⑂
GraphQL automated security testing toolkit
Python ★ 0 3y agoExplain → -
packages ⑂
List of packages for Nimble
★ 0 3y agoExplain → -
laf ⑂
This project intends to provide a series of tools to craft, parse, send, analyze and crack a set of LoRaWAN packets in order to audit or pentest the security of a LoraWAN infrastructure.
Python ★ 0 4y agoExplain → -
bin
No description.
★ 0 4y agoExplain → -
fumblechain ⑂
A Purposefully Vulnerable Blockchain
★ 0 5y agoExplain → -
ECW-Qualification-2019-CTF
Some writeups for the 2019 European Cyber Week qualification CTF.
★ 0 6y agoExplain →
No repos match these filters.