OccamsXor

Dragnmove

Infect Shared Files In Memory for Lateral Movement

sim-ba

(Sim)ulate (Ba)zar Loader

ADCollector

A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.

AllTheThingsExec

Executes Blended Managed/Unmanged Exports

BlackDoc

A two-column Jekyll theme for websites that require a master-detail layout for viewing of content

Callback_Shellcode_Injection

POCs for Shellcode Injection via Callbacks

defcon-25-workshop

Windows Post-Exploitation / Malware Forward Engineering DEF CON 25 Workshop

delete-self-poc

A way to delete a locked file, or current running executable, on disk.

DynamicWrapperEx

x64 Registration-Free In-Process COM Automation Server.

ExecutiveCallbackObjects

Research on Windows Kernel Executive Callback Objects

fuzzing-corpus

My fuzzing corpus

gdrv-loader

Kernel driver loader using vulnerable gigabyte driver (https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vulnerabilities) to load a unsigned driver

InstallerFileTakeOver

Invoke-SharpLoader

madeye-moody

metasploit-framework

Metasploit Framework

PELoader

Load PE via XML Attribute

physmem_drivers

A collection of various vulnerable (mostly physical memory exposing) drivers.

printjacker

Hijack Printconfig.dll to execute shellcode

Scripts

Small scripts that make life better

security-testbeds

shellcodeloader

shellcodeloader

subTee-gits-backups

subTee gists code backups

tsunami-security-scanner-plugins

This project aims to provide a central repository for many useful Tsunami Security Scanner plugins.

UACME

Defeating Windows User Account Control

Updated-Carbanak-Source-with-Plugins

https://twitter.com/itsreallynick/status/1120410950430089224

WindowsExploitationResources

Resources for Windows exploit development