A free Windows-compatible Operating System

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and th…

Peer-to-peer VPN

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Simple (relatively) things allowing you to dig a bit deeper than usual.

EasyHook - The reinvention of Windows API Hooking

🌴Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

Reflective DLL injection is a library injection technique in which the concept of reflective programming is employed to perform the loading of a library from memory into a host process.

A readline wrapper

WinDivert: Windows Packet Divert

A flexible tool for redirecting a given program's TCP traffic to SOCKS5 or HTTP proxy.

A post exploitation framework designed to operate covertly on heavily monitored environments

Abusing impersonation privileges through the "Printer Bug"

PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.

Open-Source Shellcode & PE Packer

The swiss army knife of LSASS dumping

Post Exploitation Collection

LSASS memory dumper using direct system calls and API unhooking.

A little toolbox to play with Microsoft Kerberos in C

Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

A tool to kill antimalware protected processes

Windows Privilege Escalation from User to Domain Admin.

Situational Awareness commands implemented using Beacon Object Files

A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!

HVNC for Cobalt Strike

A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

Self-contained exploit for CVE-2021-4034 - Pkexec Local Privilege Escalation

LoadLibrary for offensive operations

Big plugins pack built for latest flipper firmware (builds in releases for UL only)