T4TCH3R

sliver

Adversary Emulation Framework

Stardust

A modern 64-bit position independent implant template

Beacon_Source

not a reverse-engineered version of the Cobalt Strike Beacon

LightsOut

Generate an obfuscated DLL that will disable AMSI & ETW

injdrv

proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

Ruy-Lopez

AtomLdr

A DLL loader with advanced evasive features

D1rkLdr

Shellcode Loader with Indirect Dynamic syscall Implementation , shellcode in MAC format, API resolving from PEB, Syscall calll and syscall instruction address resolving at run time

Freeze

Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods

RedditC2

Abusing Reddit API to host the C2 traffic, since most of the blue-team members use Reddit, it might be a great way to make the traffic look legit.

HellHall

Performing Indirect Clean Syscalls

Pentesting-Cheatsheet

Pentesting Cheatsheet that helps me with quickly getting all my commands

Havoc

The Havoc Framework

DeathSleep

A PoC implementation for an evasion technique to terminate the current thread and restore it before resuming execution, while implementing page protection changes during no execution.

beacon

Former attempt at creating a independent Cobalt Strike Beacon

PerunsFart

This is my own implementation of the Perun's Fart technique by Sektor7

GOtusernames

Generate possible AD usernames from names like John Doe > J.Doe or JDoe

T4TCH3R

Config files for my GitHub profile.

khepri

Free,Open-Source,Cross-platform agent and Post-exploiton tool written in Golang and C++