Set of tools to analyze Windows sandboxes for exposed attack surface.

Windows kernel development in Rust is not widely used yet. Therefore, here is a simple example of a driver and minifilter written in Rust. Also, I've written some helpful crates. Enjoy!

RpcView is a free tool to explore and decompile Microsoft RPC interfaces

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals…

Inline syscalls made easy for windows on clang

PE File Code Cave Helper (Backdooring and/or Basic Section Obfuscation)

Files for http://deniable.org/windows/windows-callbacks

Wiki to collect Red Team infrastructure hardening resources

ROPGenerator is a tool that helps you building ROP exploits by finding and chaining gadgets together

GlobaLeaks - The Open-Source Whistleblowing Software

In Memory Powershell WebDav Server

Links for the OSINT Team

A collection of open source and commercial tools that aid in red team operations.

AIL framework - Analysis Information Leak framework

Unified repository for different Metasploit Framework payloads

This repo contains the .NET Core runtime, called CoreCLR, and the base library, called System.Private.Corelib (or mscorlib). It includes the garbage collector, JIT compiler, base .NET data types an…

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

LeakScraper is an efficient set of tools to process and visualize huge text files containing credentials. Theses tools are designed to help penetration testers and redteamers doing OSINT by gatheri…

Intelligent proxy pool for Humans™

An extensible and concurrency pentest framework in Go, also with WebGUI. Feel free to CONTIRBUTE!

Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources

Loader, dropper generator with multiple features for bypassing client-side and network-side countermeasures.

Steal NTLM Hashes with Bad-PDF

Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)

A command-line network packet crafting and injection utility

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)