dottorvenom

malicious-pdf

💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

emba

EMBA - The firmware security analyzer

ligolo-ng

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

ebpfkit

ebpfkit is a rootkit powered by eBPF

CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability

Microsoft-Outlook-Remote-Code-Execution-Vulnerability

gpt4-captcha-bypass

Captcha Bypass using GPT4-o

windows-api-function-cheatsheets

A reference of Windows API function calls, including functions for file operations, process management, memory management, thread management, dynamic-link library (DLL) management, synchronization, interprocess communication, Unicode string manipulation, error handling, Winsock networking operations, and registry operations.

OperatorsKit

Collection of Beacon Object Files (BOF) for Cobalt Strike

Beacon_Source

not a reverse-engineered version of the Cobalt Strike Beacon

DeadPotato

DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the original GodPotato source code by BeichenDream.

DriverJack

Hijacking valid driver services to load arbitrary (signed) drivers abusing native symbolic links and NT paths

smbtakeover

BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions

OST-C2-Spec

Open Source C&C Specification

Echelon-Stealer

☣️ Stealer chrome v81+, Firefox v75+, And more than 30 different programs and crypto-wallets

tweet-machine

This tool can retrieve : 1.Deleted tweets and replies ,Even if The account is suspended 2 .Old bios and Timestamp of The tweets

pdfdropper

PDF dropper Red Team Scenairos

Invoke-Maldaptive

MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.

Red-Team-Exercises

RAASNet

ShimMe

ROP_ROCKET

ROP ROCKET is an advanced code-reuse attack framework, with extensive ROP chain generation capabilities, including for novel Windows Syscalls attack, a novel Heaven's Gate, and "shellcodeless" ROP. The framework utilizes emulation and obfuscation to help expand the attack surface.

SCCMSecrets

SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.

SetWindowsHookEx-Keylogger

Windows C++ Native Keylogger using SetWindowsHookEx

CVE-2024-40725-CVE-2024-40898

CVE-2024-40725 and CVE-2024-40898, affecting Apache HTTP Server versions 2.4.0 through 2.4.61. These flaws pose significant risks to web servers worldwide, potentially leading to source code disclosure and server-side request forgery (SSRF) attacks.

CVE-2023-2255

CVE-2023-2255 Libre Office

pentest

Pentesting and Bug Bounty Notes, Cheetsheets and Guide for Ethical Hacker, Whitehat Pentesters and CTF Players.

WiFi-Jammer

Tool to automate wifi jamming

sleepmask-vs

A simple Sleepmask BOF example

whspdefendor

Whspdefendor Exploit Framework v1.0

tg-rat

🙊 Advanced Rat controllable by a telegram bot with many commands and functions.