Multi-Platform Package Manager for Stable Diffusion

Run PowerShell with rundll32. Bypass software restrictions.

Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities

TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts

Hunts out CobaltStrike beacons and logs operator command output

Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into…

Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!

StandIn is a small .NET35/45 AD post-exploitation toolkit

C# Script used for Red Team

Self-developed tools for Lateral Movement/Code Execution

Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments.

Retrieve LAPS password from LDAP

Command and Control Framework written in C#

Windows based GUI for Chameleon Mini, the contactless smartcard emulator (NFC/RFID)

Red Team oriented C# Simple HTTP & WebDAV Server with Net-NTLM hashes capture functionality

Miscellaneous Tools

C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection

official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)

SMBExec C# module

AD Replication Status Tool

C# tool for installing a shared network printer abusing the PrinterNightmare bug to allow other network machines easy privesc!

Spray a hash via smb to check for local administrator access

Example code samples from our ScriptBlock Smuggling Blog post

RainbowSQL is very fast dork&SQL injection scanner.

.NET port of Leron Gray's azbelt tool.

Trying to tame the three-headed dog.