"AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS

A collection of links related to Linux kernel security and exploitation

TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and penetration tests with the tokens generated working out of t…

Malware Configuration And Payload Extraction

Code and Notes for OSEP

A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders implemented by C2 beacons) or other problematic executables tha…

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List

🎯 SQL Injection Payload List

A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

Small and highly portable detection tests based on MITRE's ATT&CK.

A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.

A collection of code snippets built to assist with breaking chains.

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

Wiki to collect Red Team infrastructure hardening resources

The Havoc Framework.

A repository for additional files related to the book Windows Security Internals with PowerShell from No Starch Press.

Hide shellcode by shuffling bytes into a random array and reconstruct at runtime

Zero EAT touch way to retrieve function addresses (GetProcAddress on steroids)

Huffman Coding in Shellcode Obfuscation & Dynamic Indirect Syscalls Ldr

Process Ghosting - a PE injection technique, similar to Process Doppelgänging, but using a delete-pending file instead of a transacted file

Multiplayer pivoting solution

Malware As A Service

PEN-300 collection to help you on your exam.

Microsoft-Outlook-Remote-Code-Execution-Vulnerability

Null-free shellcode for TCP reverse shell on Windows x64

🦀 | RustRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Rust programming language. (In Construction)

A repository for learning various heap exploitation techniques.