This is my video documentation. Here you'll find code-snippets, technical documentation, templates, command reference, and whatever is needed for all my YouTube Videos.

Code for Command-Line Rust (O'Reilly, 2024, ISBN 9781098109417)

Attify OS - Distro for pentesting IoT devices

Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.

tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such as popularity and project size

Penelope Shell Handler

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Weaponized Browser-in-the-Middle (BitM) for Penetration Testers

WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.

A Python based ingestor for BloodHound

Python script to enumerate users, groups and computers from a Windows domain through LDAP queries

Virtual machines for iOS and macOS

CVE-2024-4367 & CVE-2024-34342 Proof of Concept

A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfvenom) by performing on-the-fly decryption of individual encry…

Scripts for offensive security

Collection of Notes and CheatSheets used for Red teaming Certs

winPEAS, but for Active Directory

Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles

A tool for checking if MFA is enabled on multiple Microsoft Services

Credentials recovery project

A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

Covenant is a collaborative .NET C2 framework for red teamers.

Markdown repo for notes on all things redteaming

PDF slides

This is CheatSheet which I used on PJPT exam to fully compromise Domain Controller by doing internal network penentration testing.

Reverse Shell Exploit for Searchor <= 2.4.2 (2.4.0)

a repository of all the CTF challenges I've made for public events