Skip to content
View RCStep's full-sized avatar
103 followers · 19 following

Achievements

Achievement: Starstruckx3

Achievements

Achievement: Starstruckx3

Block or report RCStep

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don't include any personal information such as legal names or email addresses. Markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Lists (1)

Sort Name ascending (A-Z)
Sort by
Name ascending (A-Z) Name descending (Z-A) Newest Oldest Last updated

Stars

Showing results

HackingLZ / ExtractedDefender

Collection of extracted Microsoft Defender data for security research purposes

230 34 Updated Jun 23, 2022

trailofbits / claude-code-config

Opinionated defaults, documentation, and workflows for Claude Code at Trail of Bits

Shell 1,008 71 Updated Feb 17, 2026

HackingDave / btrpa-scan

Bluetooth Low Energy (BLE) scanner with Resolvable Private Address (RPA) resolution using Identity Resolving Keys (IRKs)

Python 140 18 Updated Feb 18, 2026

xpn / ntlmquic

POC tools for exploring SMB over QUIC protocol

C 132 15 Updated Apr 6, 2022

RedTeamPentesting / wspcoerce

wspcoerce coerces a Windows computer account via SMB to an arbitrary target using MS-WSP

Python 133 12 Updated Nov 24, 2025

slemire / WSPCoerce

PoC to coerce authentication from Windows hosts using MS-WSP

C# 303 40 Updated Sep 7, 2023

decoder-it / ADCSCoercePotato

C++ 242 35 Updated May 5, 2024

wietze / Invoke-ArgFuscator

Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-native executables.

PowerShell 267 43 Updated Feb 13, 2026

wietze / ArgFuscator.net

ArgFuscator.net is an open-source, stand-alone web application that helps generate obfuscated command lines for common system-native executables.

TypeScript 400 50 Updated Feb 13, 2026

olafhartong / BamboozlEDR

A comprehensive ETW (Event Tracing for Windows) event generation tool designed for testing and research purposes.

Go 258 23 Updated Sep 23, 2025

wietze / windows-dll-env-hijacking

Project for identifying executables and DLLs vulnerable to environment-variable based DLL hijacking.

Shell 63 9 Updated Jul 15, 2022

Unprotect-Project / Unprotect_Submission

Unprotect is a collaborative platform dedicated to uncovering and documenting malware evasion techniques. We invite you to join us in this exciting journey and add your expertise to our collective …

C++ 205 57 Updated Sep 20, 2025

wietze / HijackLibs

Project for tracking publicly disclosed DLL Hijacking opportunities.

886 112 Updated Feb 3, 2026

JimSycurity / TBO

Titanis Backup Operator

C# 2 Updated Feb 11, 2026

sliverarmory / beignet

MacOS Shared Library to Shellcode Loader

Assembly 49 4 Updated Feb 15, 2026

bountyyfi / invisible-prompt-injection

Python 95 8 Updated Feb 7, 2026

ricardojoserf / w11_shadow_copies

Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11

C# 82 9 Updated Jan 26, 2026

nickvourd / CS-Aggressor-Kit

Homemade Aggressor scripts kit for Cobalt Strike

93 19 Updated Nov 25, 2025

Cobalt-Strike / py2rest

Library that provides Python examples for interacting with the Cobalt Strike REST API

Jupyter Notebook 24 3 Updated Nov 26, 2025

nickvourd / COM-Hunter

COM Hijacking VOODOO

C 375 59 Updated Nov 27, 2025

Cobalt-Strike / sleep2rest

Library that provides Aggressor Script functions for interacting with the Cobalt Strike REST API from the client

3 1 Updated Dec 19, 2025

Cobalt-Strike / cobaltstrike-mcp-server

MCP Server for Cobalt Strike interaction.

Python 10 2 Updated Dec 19, 2025

CodeXTF2 / CustomC2ChannelTemplate

template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.

C 101 18 Updated Jan 10, 2026

Cobalt-Strike / cobaltstrike-web-client

A PoC web interface for interacting with Cobalt Strike through its REST API.

HTML 4 2 Updated Jan 14, 2026

exfiltrata / redshell

Forked from Verizon/redshell

An interactive command line application for red team operations.

Python 2 1 Updated Jan 21, 2026

dahvidschloss / SilentFrame

A Research POC on Post-Exploitation Credential Collection through Chromium Browsers

PowerShell 9 1 Updated Feb 2, 2026

Teach2Breach / stargate

Locate dlls and function addresses without PEB Walk and EAT parsing

Rust 104 9 Updated Nov 7, 2025

ike / cursor-task-hijack

PoC demonstrating Cursor's vulnerability to tasks.json hijacking.

4 Updated Jan 23, 2026

Maldev-Academy / DumpBrowserSecrets

Extracts browser-stored data such as refresh tokens, cookies, saved credentials, credit cards, autofill entries, browsing history, and bookmarks from modern Chromium-based and Gecko-based browsers …

C 544 79 Updated Feb 14, 2026

openclaw / openclaw

Your own personal AI assistant. Any OS. Any Platform. The lobster way. 🦞

TypeScript 205,875 37,579 Updated Feb 18, 2026
Next