EDR-Redir : a tool used to redirect the EDR's folder to another location.

This is the tool to dump the LSASS process on modern Windows 11

EDR-Freeze is a tool that puts a process of EDR, AntiMalware into a coma state.

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads

Collection of Cyber Threat Intelligence sources from the deep and dark web

Proof-of-Concept tool for extracting NTLMv1 hashes from sessions on modern Windows systems.

Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but for security research and penetration testing! 🎫

a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )

Dump cookies directly from Chrome process memory

Step-by-step documentation on how to decrypt SCCM database secrets offline

Pentester's Promiscuous Notebook

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

Gather and update all available and newest CVEs with their PoC.

Lightweight binary that joins a device to a Tailscale network and exposes a local SOCKS5 proxy. Designed for red team operations and ephemeral access into restricted environments using Tailscale’s …

Dynamic shellcode loader with sophisticated evasion capabilities

Lateral Movement Bof with MSI ODBC Driver Install

Use Cloudflare to create HTTP pass-through proxies for unique IP rotation, similar to fireprox

Credentials recovery project

Obex – Blocking unwanted DLLs in user mode

Python based GUI for browsing LDAP

Inboxfuscation is an advanced offensive & defensive framework for mailbox rule obfuscation and detection in Exchange environments.

Direct access to NTFS volumes

Tunnel (TUN) interface for SOCKS and HTTP proxies

A new AList Fork to Anti Trust Crisis

Implementing an early exception handler for hooking and threadless process injection without relying on VEH or SEH

🚀 Caido releases, wiki and roadmap

📜 Yet another collection of wordlists

Weaponize DLL hijacking easily. Backdoor any function in any DLL.

Anti Virtulization, Anti Debugging, AntiVM, Anti Virtual Machine, Anti Debug, Anti Sandboxie, Anti Sandbox, VM Detect package. Windows ONLY.