Stars
A fork of the great TokenTactics with support for CAE and token endpoint v2
An MCP for WireShark (tshark). Empower LLM's with realtime network traffic analysis capability
A Python script for creating `.lnk` (shortcut) files with embedded encoded data and packaging them into ZIP archives.
A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file formats. Supports: ZIP, 7zip, PDF, ISO, IMG, CAB, VHD, VHDX
PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
BloodHound OpenGraph Entra ID Authentication Policy Data Collector
code and resources used in the Going Meta sessions
This is the loader that supports running a program with Protected Process Light (PPL) protection functionality.
Weaponize DLL hijacking easily. Backdoor any function in any DLL.
Section Mapping Process Injection (secinject): Cobalt Strike BOF
Modified versions of the Cobalt Strike Process Injection Kit
A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.
Simple BOF to read the protection level of a process
proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC
A centralized resource for previously documented WDAC bypass techniques
Adding guardrails to large language models.
Supercharge Your LLM Application Evaluations 🚀
DSPy: The framework for programming—not prompting—language models
Python library for Agentic Document Extraction from LandingAI
Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By following this approach, a security researcher will hopefully…
A command line C# REPL with syntax highlighting – explore the language, libraries and nuget packages interactively.
Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.
A modular graph-based Retrieval-Augmented Generation (RAG) system