Stars
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.
Gather and update all available and newest CVEs with their PoC.
Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations
Script collection to bypass Network Access Control (NAC, 802.1x)
Crack MSCHAPv2 challenge/responses quickly using a database of NT hashes
PoCs and technical analysis of three vulnerabilities found on Cisco AnyConnect for Windows: CVE-2020-3433, CVE-2020-3434 and CVE-2020-3435
Cisco AnyConnect < 4.8.02042 privilege escalation through path traversal
Dump Citrix Secure Access auth cookie from the process memory
A proof-of-concept Cobalt Strike Reflective Loader which aims to recreate, integrate, and enhance Cobalt Strike's evasion features!
Convert Cobalt Strike profiles to modrewrite scripts
🦘 A dependency injection container for C++11, C++14 and later
RunasCs - Csharp and open version of windows builtin runas.exe
Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords
SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
Search tool to find specific files containing specific words, i.e. files containing passwords..
Tool to bypass LSA Protection (aka Protected Process Light)
Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
Set of tools to analyze Windows sandboxes for exposed attack surface.