A C# PE loader for x64 and x86 PE files.

A PoC for exploiting Tower Of Fantasy anti-cheat driver

Official public advisory for CVE-2025-61155

AppLocker-Based EDR Neutralization

Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testing only!

Dump LSASS via physical memory read primitives in vulnerable kernel drivers

Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available

BYOVD research use cases featuring vulnerable driver discovery and reverse engineering methodology. (CVE-2025-52915, CVE-2025-1055,).

Extract data from modern Chrome versions, including refresh tokens, cookies, saved credentials, autofill data, browsing history, and bookmarks

Integrate LLM models directly into Ghidra for automated code refactoring and analysis.

NucleiFuzzer is a robust automation tool that efficiently detects web application vulnerabilities, including XSS, SQLi, SSRF, and Open Redirects, leveraging advanced scanning and URL enumeration te…

A collection of awesome one-liner scripts especially for bug bounty tips.

Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.

The recursive internet scanner for hackers. 🧡

OSWE, OSEP, OSED, OSEE

Set up your own OpenVPN server on Debian, Ubuntu, Fedora, CentOS, Arch Linux and more

The swiss army knife of LSASS dumping

Another Windows Local Privilege Escalation from Service Account to System

Red teaming tool to dump LSASS memory, bypassing basic countermeasures.

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.

Pwn stuff.

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Make "upx -d" unpacking impossible!

Adversary Emulation Framework

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

Pafish is a testing tool that uses different techniques to detect virtual machines and malware analysis environments in the same way that malware families do

An open-source, free protector for .NET applications

Red Teaming Tactics and Techniques