🪅 Windows User Space Emulator

Evasion by machine code de-optimization.

A C++ PoC implementation for enumerating Windows Fibers directly from memory

Golang Proof-of-Concept for a smaller version of hydra - as a credential testing lib

Twoway / Fast substring search for strings and byte strings (Rust) / Also assorted benchmarks and string search snippets

Extracting Clear Text Passwords from mstsc.exe using API Hooking.

Automate creating resilient, disposable, secure and agile infrastructure for Red Teams.

Vulnerability examples.

search for hosts info with shodan

Pull out bits of URLs provided on stdin

Scans all running processes. Recognizes and dumps a variety of potentially malicious implants (replaced/implanted PEs, shellcodes, hooks, in-memory patches).

A python script that finds endpoints in JavaScript files

Bruteforcing from various scanner output - Automatically attempts default creds on found services.

Process Injection

.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers

Binary coverage tool without binary modification for Windows

Unified repository for different Metasploit Framework payloads

Penetration Test / Read Team - C# tools repository

Attack and defend active directory using modern post exploitation adversary tradecraft activity

Python antivirus evasion tool

Find, verify, and analyze leaked credentials

Most advanced XSS scanner.

New improved corpus distillation toolset that has helped to found tens of vulnerabilities in MS and Adobe products

A framework to fuzz Word Quick Fields

GDB cheatsheet for reversing binaries

Collection of commands, tips and tricks and references I found useful during preparation for OSCP exam.

HTA encryption tool for RedTeams

PowerShell Obfuscator

Bug Bounty writeups, Vulnerability Research, Tutorials, Tips&Tricks