PowerShell MachineAccountQuota and DNS exploit tools

Trying to tame the three-headed dog.

Active Directory certificate abuse.

Tool for Active Directory Certificate Services enumeration and abuse

This tool is for letting you know how strong your disable_functions is and how you can bypass that.

Dex to Java decompiler

This is a webshell open source project

Java RMI enumeration and attack tool.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Java RMI Vulnerability Scanner

Unified Efficient Fine-Tuning of 100+ LLMs & VLMs (ACL 2024)

GTFOBins is a curated list of Unix-like executables that can be used to bypass local security restrictions in misconfigured systems.

Simple C++ PoC of SeDebugPrivilege Privesc

An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.

RunasCs - Csharp and open version of windows builtin runas.exe

Abusing impersonation privileges through the "Printer Bug"

.NET debugger and assembly editor

Kerberoast with ACL abuse capabilities

A tool to perform Kerberos pre-auth bruteforcing

Precompiled executable

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)

A tool to dump a git repository from a website

Automatically spawn a reverse shell fully interactive for Linux or Windows victim

Recover the default privilege set of a LOCAL/NETWORK SERVICE account

A cross-platform programmable network tool