A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

Simple (relatively) things allowing you to dig a bit deeper than usual.

AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Cobalt Strike Malleable C2 profile.

A collection of various tools for red-teaming exercises. A mix of C#, Powershell, & Python

Some usefull Scripts and Executables for Pentest & Forensics

StandIn is a small .NET35/45 AD post-exploitation toolkit

TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!

📙 Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report

Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into…

An Active Defense and EDR software to empower Blue Teams

Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019

A collection of custom security tools for quick needs.

Make JSON greppable!

Rainbow table generation & lookup tools. Make Rainbow Tables Great Again!

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world.…

🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024

Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.

A collection of hacking tools, resources and references to practice ethical hacking.

Pipal, THE password analyser

Fast offline auditing of Active Directory passwords using Python.

Load shellcode into a new process

Run PowerShell command without invoking powershell.exe

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

LinkedIn Recon Tool

Course content and slides from my ancient training on Reverse Engineering & Malware Analysis

Pivoting Frontend for Pre-Seeded Password Databases

My musings with PowerShell