Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

2,398 351 Updated Feb 14, 2025

Flangvik / NetLoader

Loads any C# binary in mem, patching AMSI + ETW.

C# 813 144 Updated Oct 3, 2021

SecWiki / windows-kernel-exploits

windows-kernel-exploits Windows平台提权漏洞集合

C 8,220 2,846 Updated Jun 11, 2021

bitsadmin / wesng

Windows Exploit Suggester - Next Generation

Python 4,341 575 Updated Feb 28, 2025

nomi-sec / PoC-in-GitHub

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

6,744 1,212 Updated Mar 3, 2025

61106960 / adPEAS

Powershell tool to automate Active Directory enumeration.

PowerShell 1,066 131 Updated Feb 22, 2025

Leo4j / Invoke-ADEnum

Automated Active Directory Enumeration

PowerShell 434 49 Updated Jan 22, 2025

initstring / linkedin2username

OSINT Tool: Generate username lists for companies on LinkedIn

Python 1,391 190 Updated Jan 15, 2024

AD-Security / AD_Miner

AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses

JavaScript 1,249 128 Updated Mar 3, 2025

PowerShellEmpire / PowerTools

PowerTools is a collection of PowerShell projects with a focus on offensive operations.

PowerShell 2,093 812 Updated Dec 28, 2021

mandiant / OfficePurge

C# 257 70 Updated Apr 10, 2023

leabhart / Maldocs

Scripting together some of my favorite Python tools for doing initial triage of a suspected malicious document (e.g. PDF, DOC, DOCX, XSLM, etc.)

Python 14 2 Updated Mar 8, 2022

connormcgarr / LittleCorporal

LittleCorporal: A C# Automated Maldoc Generator

C# 227 61 Updated Jul 30, 2021

trailofbits / RpcInvestigator

Exploring RPC interfaces on Windows

C# 317 28 Updated Jan 30, 2024

silverf0x / RpcView

RpcView is a free tool to explore and decompile Microsoft RPC interfaces

C++ 954 253 Updated Sep 24, 2023

karttoon / trigen

Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.

Python 201 41 Updated Jul 2, 2017

decalage2 / ViperMonkey

A VBA parser and emulation engine to analyze malicious macros.

Python 1,075 186 Updated Jul 10, 2024

sevagas / macro_pack

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments…

Python 2,222 411 Updated Aug 15, 2024

sevagas / Advanced_Initial_access_in_2024_OffensiveX

Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"

135 10 Updated Aug 15, 2024

sevagas / WindowsDefender_ASR_Bypass-OffensiveCon2019

Public documents related to my talk "Bypass Windows Exploit Guard ASR" at Offensive Con 2019.

93 28 Updated Feb 24, 2019

rmdavy / HeapsOfFun

AMSI Bypass Via the Heap

VBA 105 13 Updated Nov 20, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Theodoros Symeonidis tur11ng

Achievements

Achievements

Highlights

Organizations

Block or report tur11ng

🥷🏻🔴Red Team

matterpreter / DefenderCheck

tevora-threat / SharpView

PowerShellMafia / PowerSploit

0xMrNiko / Awesome-Red-Teaming

danielbohannon / Invoke-CradleCrafter

danielbohannon / Invoke-Obfuscation

RythmStick / AMSITrigger

OmerYa / Invisi-Shell

WithSecureLabs / physmem2profit

Flangvik / SharpCollection