Shikata ga nai (仕方がない) encoder ported into go with several improvements

Shellcode loader generator with multiples features

Syscall Shellcode Loader (Work in Progress)

SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by…

Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.

A regular-expression based python MITM DNS server with support for DNS Rebinding attacks

A python based minimal DNS server to test/verify DNS rebinding attacks

Havoc C2 profile generator

A tool to perform Kerberos pre-auth bruteforcing

Six Degrees of Domain Admin

Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format

Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive da…

real time face swap and one-click video deepfake with only a single image

ScareCrow - Payload creation framework designed around EDR bypass.

C# .Net Framework program that uses RunspaceFactory for Powershell command execution.

The Network Execution Tool

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications

TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and penetration tests with the tokens generated working out of t…

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

InSpec: Auditing and Testing Framework

MSSprinkler is a password spraying utility for organizations to test their Microsoft Online accounts from an external perspective. It employs a 'low-and-slow' approach to avoid locking out accounts…

game of active directory

Automagically reverse-engineer REST APIs via capturing traffic

SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

C# Data Collector for BloodHound

A TCP packet diverter for Windows platform

Run WPS PIN attacks (Pixie Dust, online bruteforce, PIN prediction) without monitor mode with the wpa_supplicant

# This scripts is edited under the General Public License as defined by the Free software foundation. # This package is distributed in the hope that it will be useful, but without any warranty; It…

WPS pin generator written in Python 3