rasta-mouse

ThreatCheck

Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.

SharpC2

Command and Control Framework written in C#

CsWhispers

Source generator to add D/Invoke and indirect syscall methods to a C# project.

DInvoke

Dynamically invoke arbitrary unmanaged code from managed code without P/Invoke.

PPEnum

Simple BOF to read the protection level of a process

SCMUACBypass

SpawnWith

ExternalC2.NET

.NET implementation of Cobalt Strike's External C2 Spec

MinHook.NET

A C# port of the MinHook API hooking library

KerbApp

offensive-defence

Covenant

Covenant is a collaborative .NET C2 framework for red teamers.

OffensiveCSharp

Collection of Offensive C# Tooling

EDD

Enumerate Domain Data

KaynLdr

KaynLdr is a Reflective Loader written in C/ASM

PrettyPrompt

A cross-platform command line input library that provides syntax highlighting, autocompletion, history and multi-line input.

CVE-2021-44228-Apache-Log4j-Rce

Apache Log4j 远程代码执行

Rubeus

Trying to tame the three-headed dog.

rust_syscalls

Single stub direct and indirect syscalling with runtime SSN resolving for windows.

SharpC2-Docs

injdrv

proof-of-concept Windows Driver for injecting DLL into user-mode processes using APC

InlineExecute-Assembly

InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditional fork and run execute-assembly module

KaynStrike

URDL for CS

LOLDrivers

Living Off The Land Drivers

MalSCCM

SharpSCCM

A C# utility for interacting with SCCM

SQLRecon

A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.

EyeWitness

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

InfoSec-Black-Friday

All the deals for InfoSec related software/tools this Black Friday

RunOF