dust-life

run_pe

Free445-BOF

Tools

CVE-2019-18935-memShell

BOFs

Beacon Object Files

DCSyncer

Perform DCSync operation without mimikatz

SuperWordlist

基于实战沉淀下的各种弱口令字典

ADCollector

A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.

cf

云环境利用框架（Cloud exploitation framework）主要用来方便红队人员在获得 AK 的后续工作。

de4dot

.NET deobfuscator and unpacker.

donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Eternalblue-Doublepulsar-Metasploit-for-Windows

Eternalblue-Doublepulsar-Metasploit-for-Windows

Phantom-Evasion

Python AV evasion tool capable to generate FUD executable even with the most common 32 bit metasploit payload(exe/elf/dmg/apk)

test

ADExplorerSnapshot.py

ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.

BeaconEye

Hunts out CobaltStrike beacons and logs operator command output

Cobaltstrike-Trial

dnlib

Reads and writes .NET assemblies and modules

dust-life.github.io

File-Tunnel

Tunnel TCP connections through a file

Invoke-BSOD

For when you want a computer to be done - without admin!

ItWasAllADream

A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE

ldap_shell

AD ACL abuse

ldapsearch-ad

Python3 script to quickly get various information from a domain controller through his LDAP service.

Self_Deletion_BOF

BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs

SharpMemshell

Memshell

SharpSphere

.NET Project for Attacking vCenter

suo5

一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool

ysoserial.net

Deserialization payload generator for a variety of .NET formatters

yujianrdpcrack

御剑RDP爆破工具