Windows
Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
Tools for Kerberos PKINIT and relaying to AD CS
SharpWMI is a C# implementation of various WMI functionality.
Tool for Active Directory Certificate Services enumeration and abuse
Inline syscalls made easy for windows on clang
AV/EDR evasion via direct system calls.
Privilege Escalation: Weaponizing CVE-2019-1405 and CVE-2019-1322
evtx2json extracts events of interest from event logs, dedups them, and exports them to json.
Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
Windows passwords decryption from dump files
RottenPotato local privilege escalation from service account to SYSTEM
Another Windows Local Privilege Escalation from Service Account to System
oletools - python tools to analyze MS OLE2 files (Structured Storage, Compound File Binary Format) and MS Office documents, for malware analysis, forensics and debugging.
Pure Python parser for Windows Event Log files (.evtx)
A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.
AV/EDR evasion via direct system calls.
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It ca…
[ProxyLogon] CVE-2021-26855 & CVE-2021-27065 Fixed RawIdentity Bug Exploit. [ProxyOracle] CVE-2021-31195 & CVE-2021-31196 Exploit Chains. [ProxyShell] CVE-2021-34473 & CVE-2021-34523 & CVE-2021-312…
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.