Cobalt Strike Beacon Object Files (BOFs) written in rust with rust core and alloc.

🦀 | RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust

Reproducing Spyboy technique, which involves terminating all EDR/XDR/AVs processes by abusing the zam64.sys driver

Versatile GUI hex editor focused on binary file exploration and aiding pattern recognition

Rust malware EDR evasion via direct syscalls, fully implemented as an example in Rust

🦀 How to minimize Rust binary size 📦

An Ansible collection that installs an SCCM deployment with optional configurations.

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 9…

Rapidly Search and Hunt through Windows Forensic Artefacts

SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

MSI NTIOLib/WinIO Local Privilege Escalation exploit

A stealthy ELF loader - no files, no execve, no RWX

FreshyCalls tries to make the use of syscalls comfortable and simple, without generating too much boilerplate and in modern C++17!

DPAPI looting remotely and locally in Python

SSHD Based implant supporting tunneling mecanisms to reach the C2 (DNS, ICMP, HTTP Encapsulation, HTTP/Socks Proxies, UDP...)

AWSGoat : A Damn Vulnerable AWS Infrastructure

POC for Veeam Backup and Replication CVE-2023-27532

A collection of all the data i could extract from 1 billion leaked credentials from internet.

ROPfuscator is a fine-grained code obfuscation framework for C/C++ programs using ROP (return-oriented programming).

Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists

C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD connect database.

A vulnerability within Microsoft Office's wwlib allows attackers to achieve remote code execution with the privileges of the victim that opens a malicious RTF document. The attacker could deliver t…

LPE exploit for CVE-2023-21768

All my Source Codes (Repos) for Red-Teaming & Pentesting + Blue Teaming

Retrieve AD accounts description and search for password in it