Copia De un buffer Con ReadProcessMemory

C2 Cross-platform

Suspicious is a powerful web application designed to help users submit and analyze emails, files, IP addresses, and URLs

Repository for SOC analysts, queries to investigate, advanced hunting, sites for analysis, malware samples, courses to improve skills, IOC and monitoring.

SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

KQL Queries. Defender For Endpoint and Azure Sentinel Hunting and Detection Queries in KQL. Out of the box KQL queries for: Advanced Hunting, Custom Detection, Analytics Rules & Hunting Rules.

Elastic Security detection content for Endpoint

My POC implementation of HVNC (Hidden VNC / Hidden Desktop)

Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel

A repo that contains recursive directory listings (using PowerShell) of a vanilla (clean) install of every Windows OS version to compare and see what's been added with each update. Use these CSVs t…

Domains Blacklist for Squid-Cache

FaceDancer is an exploitation tool aimed at creating hijackable, proxy-based DLLs by taking advantage of COM-based system DLL image loading

Office 365 Reporting PowerShell Scripts

DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the ori…

Open Source C&C Specification

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

An automation tool that enumerates subdomains then filters out xss, sqli, open redirect, lfi, ssrf and rce parameters and then scans for vulnerabilities.

Microsoft Architecture Icons compiled in PowerPoint

Various Dockerfiles I use on the desktop and on servers.

Swiss army knife Webserver in Golang. Keep simple like the python SimpleHTTPServer but with many features

A Red Team Activity Hub

Evilginx Phishing Engagement Infrastructure Setup Guide

A tool that allows you to create vulnerable instrumented local or cloud environments to simulate attacks against and collect the data into Splunk

An offensive and defensive security toolset for Microsoft 365 Power Platform

CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec and Audit Management and supporting +33 frameworks worldwide: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC, PSPF, GDPR, HIPAA…

Windows Kernel Offensive Toolset