A PowerShell script that simplifies life and therefore... phishing.

An other No-Fix LPE, NTLMRelay2Self over HTTP (Webdav).

FrostByte is a POC project that combines different defense evasion techniques to build better redteam payloads

A small POC to make defender useless by removing its token privileges and lowering the token integrity

Just another casual shellcode native loader

WMEye is a post exploitation tool that uses WMI Event Filter and MSBuild Execution for lateral movement

UUID based Shellcode loader for your favorite C2

An implementation and proof-of-concept of Process Forking.

The swiss army knife of LSASS dumping

Detect and respond to Cobalt Strike beacons using ETW.

LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript

New lateral movement technique by abusing Windows Perception Simulation Service to achieve DLL hijacking code execution.

C# Lsass parser

Cooked fltMC

Memory Patching AMSIScanBuffer

Managed assembly shellcode generation

Assembly HellGate implementation that directly calls Windows System Calls and displays the PPID of the explorer.exe process

A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.

Collection of CobaltStrike beacon object files