A mostly-serverless distributed hash cracking platform

Patch AMSI and ETW

LotL RMM

Dumping DPAPI credz remotely

Determine the Palo Alto PAN-OS software version of a remote GlobalProtect portal or management interface.

Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel

Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel

tun2socks - powered by gVisor TCP/IP stack

graphw00f is GraphQL Server Engine Fingerprinting utility for software security professionals looking to learn more about what technology is behind a given GraphQL endpoint.

Useful Cobalt Strike techniques learned from engagements

Useful C2 techniques and cheatsheets learned from engagements

Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection

Collection of some of my own tools with other great open source tools out there packaged into a powershell module

Our repo for crushing through RTO course & labs.

Certified Red Team Operator

This repo contains some Amsi Bypass methods i found on different Blog Posts.

Certified Red Team Operator (CRTO) Cheatsheet and Checklist

SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS

AWS Attack Path Management Tool - Walking on the Moon

A readline wrapper

Penelope Shell Handler

This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used in Obsidian

Open and inexpensive DIY IP-KVM based on Raspberry Pi

My Personal Notes of OSEP

Fast offline auditing of Active Directory passwords using Python.

Easily train a good VC model with voice data <= 10 mins!

Real-time face swap for PC streaming or video calls

DeepFaceLab is the leading software for creating deepfakes.