Lists (20)
Stars
Create, delete or list Shadows Copies using the VSS API using C++, C# or Python. Working on Windows 11
ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets by identifying active user profiles on domain machines.
A high-speed covert tunnel that disguises TCP traffic as SMTP email communication to bypass Deep Packet Inspection (DPI) firewalls.
Stealthy Linux Kernel Rootkit for modern kernels (6x)
PoC for generating bthprops.cpl module designed to be loaded by Fsquirt.exe LOLBin
A portable C# utility for enumerating local and remote windows sessions
UDC2 implementation that provides an ICMP C2 channel
Early cascade injection PoC based on Outflanks blog post written in Rust
An architecture-agnostic ELF file flattener for shellcode
Load a dynamic library from memory by modifying the native Windows loader
This code silently installs Chrome extensions on Mac, Windows, and Linux
Extract data from modern Chrome versions, including refresh tokens, cookies, saved credentials, autofill data, browsing history, and bookmarks
A simple POC to show how to chain multiple callbacks via tail calls to artificially construct a call stack
Star Stealer is a fast, lightweight stealer written in C#. The collected data is transferred through discord webhooks.
This C# tool sprays for admin access over the entire domain
Moonwalk++: Simple POC Combining StackMoonwalking and Memory Encryption
A Windows tool that converts LDIF files to BloodHound CE
LibPicoManager is a unified PICO management framework that provides centralized control over PICOs in memory, enabling dynamic code loading, runtime PICO substitution, and advanced evasion techniqu…
Patchless AMSI bypass using hardware breakpoints and a vectored exception handler to intercept AmsiScanBuffer and AmsiScanString before they execute. The bypass reads the 5th parameter (the AMSI re…
Windows Access token manipulation tool made in C#
Windows User-Mode Shellcode Development Framework (WUMSDF)