IDA Pro utilities from FLARE team

Performing Indirect Clean Syscalls

TartarusGate, Bypassing EDRs

A collaborative, multi-platform, red teaming framework

SysWhispers on Steroids - AV/EDR evasion via direct system calls.

Open-source Windows and Office activator featuring HWID, Ohook, KMS38, and Online KMS activation methods, along with advanced troubleshooting.

Original C Implementation of the Hell's Gate VX Technique

AV/EDR evasion via direct system calls.

AV/EDR evasion via direct system calls.

The Minimalistic x86/x64 API Hooking Library for Windows

Collection of various malicious functionality to aid in malware development

Alternative Shellcode Execution Via Callbacks

Reduce Entropy And Obfuscate Youre Payload With Serialized Linked Lists

Portable Executable reversing tool with a friendly GUI

A QoL tool to obfuscate shellcode. In the future will be able to chain encoding/encryption/compression methods.

Privilege Escalation Enumeration Script for Windows

Tool to bypass LSA Protection (aka Protected Process Light)

C# implementation of harmj0y's PowerView

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

SharPyShell - tiny and obfuscated ASP.NET webshell for C# web applications

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

A little toolbox to play with Microsoft Kerberos in C

Proof-of-concept tools for my AD Forest trust research

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

Username tools for penetration testing

MaxMind's GeoIP2 GeoLite2 Country, City, and ASN databases

PowerShell MachineAccountQuota and DNS exploit tools

GolenGMSA tool for working with GMSA passwords

Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)