Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC

Pass the Hash to a named pipe for token Impersonation

Simple Polymorphic Engine (SPE32) is a simple polymorphic engine for encrypting code and data. It is an amateur project that can be used to demonstrate what polymorphic engines are.

Powershell tool to automate Active Directory enumeration.

Automation for internal Windows Penetrationtest / AD-Security

PoC of CVE-2023-40459 (DoS on ACEmanager)

Colorize Reached Blocks in IDA Pro using DynamoRIO drcov Output

Public malware techniques used in the wild: Virtual Machine, Emulation, Debuggers, Sandbox detection.

evilginx3 + gophish

The New (auto rotate) Proxy [Finder | Checker | Server]. HTTP(S) & SOCKS 🎭

This repo covers some code execution and AV Evasion methods for Macros in Office documents

Various public documents, whitepapers and articles about APT campaigns

-------> RAFEL<------ Android Rat Written in Java With WebPanel For Controlling Victims...Hack Android Devices

Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

Flexible C# shellcode runner

A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.

Simple (relatively) things allowing you to dig a bit deeper than usual.

Small and highly portable detection tests based on MITRE's ATT&CK.

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

game of active directory

PowerShell Obfuscator

Fully featured and community-driven hacking environment

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections…

Reverse engineering focusing on x64 Windows.

Bootstrap yourself to write an OS from scratch. A book for self-learner.

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.