A collection of scripts for assessing Microsoft Azure security

Collection of Beacon Object Files

The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.

A tool to abuse Exchange services

psexecsvc - a python implementation of PSExec's native service implementation

HTTP parameter discovery suite.

🏔 Love Freedom - ❌ Block Mass Surveillance

Light-weight system monitor for X, Wayland, and other things, too

CVE-2024-4577 RCE PoC

Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability

Patch termsrv.dll so that multiple remote users can open an RDP session on a non-Windows Server computer

Demoting PPL anti-malware services to less than a guest user

Windows AppLocker Driver (appid.sys) LPE

A Rust PoC implementation of the Early Bird process hollowing technique, inspired by https://github.com/boku7/HOLLOW.

Command line utility for searching and downloading exploits

curl-impersonate: A special build of curl that can impersonate Chrome & Firefox

Janus-Series: Unified Multimodal Understanding and Generation Models

Integrate the DeepSeek API into popular softwares

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

A Rust implementation of GodPotato — abusing SeImpersonate to gain SYSTEM privileges. Includes a TCP-based reverse shell and indirect NTAPI for various operations.

🔍 Search anyone's digital footprint across 300+ websites

ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.

Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry

CF-Hero is a reconnaissance tool that uses multiple data sources to discover the origin IP addresses of Cloudflare-protected web applications

COM ViewLogger — new malware keylogging technique

RunasCs - Csharp and open version of windows builtin runas.exe

A JavaScript Engine Fuzzer