Injectra is a Python-based tool for injecting custom payloads into various file types using their magic numbers. It supports file types like zip, rar, docx, jpg, and more, allowing for customizable…

CapibaraZero main firmware repository

🚇 Tunnel your local HTTP(s) server to the world! powered by Cloudflare Quick Tunnels.

Collection of random RedTeam scripts.

This project explores secure remote access using Metasploit's reverse TCP payloads. Ethically and responsibly, we showcase potential risks, vulnerabilities, and post-exploitation activities, emphas…

A C# Command & Control framework

This code example allows you to create a malware.exe sample that can be run in the context of a system service, and could be used for local privilege escalation in the context of an unquoted servic…

Port of Samy Kamkar's MagSpoof project (http://samy.pl/magspoof/) to the Flipper Zero. Enables wireless emulation of magstripe data, primarily over GPIO, with additional experimental internal TX.

This is a multi-use bash script for Linux systems to audit wireless networks.

Evading Anti-Virus with Unusual Technique

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

Villain is a high level stage 0/1 C2 framework that can handle multiple reverse TCP & HoaxShell-based shells, enhance their functionality with additional features (commands, utilities) and share th…

KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).

CVE-2022-26134 Proof of Concept

Tool to audit and attack LAPS environments

The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment with the Active Directory Certificate Services (AD CS) serve…

steal victim images exact location device info and much more

Medusa is a cross-platform C2 agent compatible with Python 2.7 and 3.8, compatible with Mythic

Check for LDAP protections regarding the relay of NTLM authentication

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments…

Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.

Extendable payload obfuscation and delivery framework

A VBA implementation of the RunPE technique or how to bypass application whitelisting.

HTA encryption tool for RedTeams

Malicious WMI Events using PowerShell

Custom PowerShell module to setup an Active Directory lab environment to practice penetration testing.

Extract credentials from lsass remotely

Open source pre-operation C2 server based on python and powershell