User-friendly Desktop Client App for AI Models/LLMs (GPT, Claude, Gemini, Ollama...)

User-friendly AI Interface (Supports Ollama, OpenAI API, ...)

A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.

Tooling for the OffSec Experienced Pentester (OSEP) and OffSec Exploit Developer (OSED) course

Containing my notes, practice binaries + solutions, blog posts, etc. for the Offensive Security Exploit Developer (OSED/EXP-301)

bespoke tooling for offensive security's Windows Usermode Exploit Dev course (OSED)

Tool for Active Directory Certificate Services enumeration and abuse

"Pwntools does not support Windows. Use a real OS ;)" — Zach Riggle, 2015

Early Bird APC Injection in Rust

Complete list of LPE exploits for Windows (starting from 2023)

PoC for CVE-2024-48990

A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.

A set of fully-undetectable process injection techniques abusing Windows Thread Pools

A new technique that can be used to bypass memory scanners. This can be useful in hiding problematic code (such as reflective loaders implemented by C2 beacons) or other problematic executables tha…

Fileless attack with persistence

Python implementation of GhostPack's Seatbelt situational awareness tool

Rustcat(rcat) - The modern Port listener and Reverse shell

a fast password wordlist generator, Smartlist creation and password hybrid-mask analysis tool written in pure safe Rust

Compiled Binaries for Ghostpack

A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

rcat

Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive da…

early cascade injection PoC based on Outflanks blog post

.NET post-exploitation toolkit for Active Directory reconnaissance and exploitation

2018 School project - PoC of malware code obfuscation in Word macros

Small and highly portable detection tests based on MITRE's ATT&CK.

Active Directory certificate abuse.

Source generator to add D/Invoke and indirect syscall methods to a C# project.

Indirect syscalls + DInvoke made simple.