Synzack's Stars
WKL-Sec/HiddenDesktop
HVNC for Cobalt Strike
Kudaes/Split
Apply a divide and conquer approach to bypass EDRs
yarrick/iodine
Official git repo for iodine dns tunnel
Dec0ne/DavRelayUp
DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the default settings).
CultCornholio/solenya
Microsoft365 Device Code Phishing Framework
med0x2e/NTLMRelay2Self
An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).
sse-secure-systems/Active-Directory-Spotlights
garrettfoster13/sccmhunter
XiaoliChan/wmiexec-Pro
New generation of wmiexec.py
REDMED-X/OperatorsKit
Collection of Beacon Object Files (BOF) for Cobalt Strike
wietze/windows-dll-hijacking
Project for identifying executables and DLLs vulnerable to relative path DLL hijacking.
jasonjfrank/gnmap-parser
Bash script to parse multiple Nmap (.gnmap) exports into various plain-text formats for easy analysis.
Signal-Labs/iat_unhook_sample
(First Public?) Sample of unhooking ntdll (All Exports & IAT imports) hooks in Rust using in-memory disassembly, avoiding direct syscalls and all hooked functions (incl. hooked NtProtectVirtualMemory)
franc-pentest/ldeep
In-depth ldap enumeration utility
janoglezcampos/rust_syscalls
Single stub direct and indirect syscalling with runtime SSN resolving for windows.
SecuraBV/Timeroast
Timeroasting scripts by Tom Tervoort
Kudaes/DInvoke_rs
Dynamically invoke arbitrary unmanaged code
sensepost/wpa_sycophant
Evil client portion of EAP relay attack
rover33/TrustedCert
Acebond/ReverseSocks5
Single executable reverse SOCKS5 proxy written in Golang.
p0dalirius/LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
Tylous/File-Smuggling
HTML smuggling is not an evil, it can be useful
connormcgarr/tgtdelegation
tgtdelegation is a Beacon Object File (BOF) to obtain a usable TGT via the "TGT delegation trick"
Octoberfest7/Inline-Execute-PE
Execute unmanaged Windows executables in CobaltStrike Beacons
ImpostorKeanu/eavesarp
Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)
jimilinuxguy/customer-assistance-buttons-sdr
This repository houses the work that ive put into reversing the various encoders and protocols used for customer service buttons in retail shops such as Walgreens, CVS, Lowes, and Home Depot
hasherezade/pe_to_shellcode
Converts PE into a shellcode
UberGuidoZ/Flipper
Playground (and dump) of stuff I make or modify for the Flipper Zero
manifoldco/promptui
Interactive prompt for command-line applications
Sh11td0wn/winrm_kerb_shell
Ruby script that calls an almost interactive shell via WinRM (TCP/5985) on an Windows machine, relaying on a valid Kerberos ticket. (Very useful with Golden Tickets)