Python for .NET is a package that gives Python programmers nearly seamless integration with the .NET Common Language Runtime (CLR) and provides a powerful application scripting tool for .NET develo…

Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.

A Rust port of LayeredSyscall — performs indirect syscalls while generating legitimate API call stack frames by abusing VEH.

onedrive user enumeration - pentest tool to enumerate valid o365 users

Username enumeration and password spraying tool aimed at Microsoft O365.

TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!

OSINT Tool: Generate username lists for companies on LinkedIn

A tool to interact with Windows drivers to perform a raw disk read and parse out target files without calling standard Windows file APIs

Extract SAM and SYSTEM using Volume Shadow Copy (VSS) API. With multiple exfiltration options and XOR obfuscation

E-mails, subdomains and names Harvester - OSINT

Shellcode injection using the Windows Debugging API

A library to load, manipulate, dump PE files. See also: https://github.com/hasherezade/libpeconv_tpl

The dragon in the dark. A red team post exploitation framework for testing security controls during red team assessments.

Covenant is a collaborative .NET C2 framework for red teamers.

Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)

Shellcode and In-PowerShell solution for patching AMSI via Page Guard Exceptions

Open-source Windows and Office activator featuring HWID, Ohook, TSforge, and Online KMS activation methods, along with advanced troubleshooting.

Self-deployable file hosting service for red teamers, allowing to easily upload and share payloads over HTTP and WebDAV.

Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Manager, and more — with multi-region scanning and auto-sugges…

A collection of scripts for assessing Microsoft Azure security

PowerShell framework to assess Azure security

Utilizng an MCP Server to communicate with your C2

A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA server using the MS-WCCE protocol over DCOM and It bypasses …

In-depth ldap enumeration utility

RunasCs - Csharp and open version of windows builtin runas.exe

Obex – Blocking unwanted DLLs in user mode

A method of bypassing EDR's active projection DLL's by preventing entry point exection

Sticky notes for pentesting, bug bounty, CTF.