smbclient-ng, a fast and user friendly way to interact with SMB shares.

A slightly more fun way to disable windows defender + firewall. (through the WSC api)

Tunnel TCP connections through a file

MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.

The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning

IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then reflective load the C# project.

Fileless atexec, no more need for port 445

Leveraging GitHub Actions to rotate IP addresses during password spraying attacks to bypass IP-Based blocking

Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)

Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.

redirect all TCP/UDP traffic of any program to SOCKS5 proxy

Cisco Smart Install Exploit by ChristianPapathanasiou written in python 3

SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin privileges.

Async Python library to parse local and remote disk images.

This repository is a tool to create a .suo that when run by visual studio's will achieve code execution

Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.

A tool to scrape LinkedIn without API restrictions for data reconnaissance

Lockless BOF

Various *nix tools built as statically-linked binaries

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Reverse Tunneling made easy for pentesters, by pentesters https://sysdream.com/

transparent TCP-to-proxy redirector

Bounces when a fish bites - Evilginx database monitoring with exfiltration automation

Decrypt Veeam database passwords

Weaponized Browser-in-the-Middle (BitM) for Penetration Testers

A tool employs direct registry manipulation to create scheduled tasks without triggering the usual event logs.