CloudMoe Windows 10/11 Activation Toolkit get digital license, the best open source Win 10/11 activator in GitHub. GitHub 上最棒的开源 Win10/Win11 数字权利（数字许可证）激活工具！

Ladon大型内网渗透扫描器，PowerShell、Cobalt Strike插件、内存加载、无文件扫描。含端口扫描、服务识别、网络资产探测、密码审计、高危漏洞检测、漏洞利用、密码读取以及一键GetShell，支持批量A段/B段/C段以及跨网段扫描，支持URL、主机、域名列表扫描等。网络资产探测32种协议(ICMP\NBT\DNS\MAC\SMB\WMI\SSH\HTTP\HTTPS\Exc…

Trying to tame the three-headed dog.

Covenant is a collaborative .NET C2 framework for red teamers.

Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

Tool to find metadata and hidden information in the documents.

.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers

掩日 - 免杀执行器生成工具

A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527

Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019

Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS

这是一个抓取浏览器密码的工具，后续会添加更多功能

A tool to create a JScript file which loads a .NET v2 assembly from memory.

Remote Desktop Protocol .NET Console Application for Authenticated Command Execution

A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.

SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。

Scan files or process memory for CobaltStrike beacons and parse their configuration

Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into…

Loads any C# binary in mem, patching AMSI + ETW.

.NET 4.0 CLR Project to retrieve Chromium data, such as cookies, history and saved logins.

.Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py

The Old BloodHound C# Ingestor (Deprecated)

Struts2系列漏洞检查工具

Run Powershell without software restrictions.

A Post exploitation tool written in C# uses either CIM or WMI to query remote systems.

利用 NTLMSSP 探测 Windows 信息

PortTran (.NET端口转发工具,支持任意权限)