Run Windows apps on 🐧 Linux with ✨ seamless integration

A secure sandbox environment for malware developers and red teamers to test payloads against detection mechanisms before deployment. Integrates with LLM agents via MCP for enhanced analysis capabil…

Migrate C code to Rust

A script that helps you understand why your E-Mail ended up in Spam

An interactive cheatsheet tool for the command-line

Simple EDR implementation to demonstrate bypass

Web Application Security Scanner Framework

This is a collection of some of mine mindmaps abount pentesting created with Obsidian.

Provides situational awareness of Industrial Control Systems (ICS) and Supervisory Control and Data Acquisition (SCADA) networks in support of network security assessments. #nsacyber

RunPE implementation with multiple evasive techniques

Quill is your AI assistant and custom command creator.

👻 Ghostty is a fast, feature-rich, and cross-platform terminal emulator that uses platform-native UI and GPU acceleration.

A terminal for a more modern age

CurlWright is a Cloudflare bypass tool that leverages Playwright to execute curl commands with full browser capabilities, allowing you to access protected websites seamlessly.

Collection of Summer 2026 tech internships!

Bypass user-land hooks by syscall tampering via the Trap Flag

x64 Windows kernel code execution via user-mode, arbitrary syscall, vulnerable IOCTLs demonstration

Run Windows apps such as Microsoft Office/Adobe in Linux (Ubuntu/Fedora) and GNOME/KDE as if they were a part of the native OS, including Nautilus integration. Hard fork of https://github.com/Fmst…

This is the loader that supports running a program with Protected Process Light (PPL) protection functionality.

DigitalPlat FreeDomain: Free Domain For Everyone

Website Cloner - Utilizes powerful Go routines to clone websites to your computer within seconds.

Two tools written in C that block network traffic for blacklisted EDR processes, using either Windows Defender Firewall (WDF) or Windows Filtering Platform (WFP).

Weaponize DLL hijacking easily. Backdoor any function in any DLL.

TrevorC2 is a legitimate website (browsable) that tunnels client/server communications for covert command execution.

Repository containing all training and tutorials completed in preparation for the OSEE in conjunction with the AWE course.