C# Assembly unused classes/references/resources cleaner

Use hardware breakpoint to dynamically change SSN in run-time

C# Utilities for Windows Notification Facility

list of passwords more likely to be used by sysadmins, general nerds, and folk with access

The Hunt for Malicious Strings

Computer object takeover through Resource-Based Constrained Delegation (msDS-AllowedToActOnBehalfOfOtherIdentity)

Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the intentions of a process.

Hunts out CobaltStrike beacons and logs operator command output

Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands

An open-source, free protector for .NET applications

Also known by Microsoft as Knifecoat 🌶️

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

DLL and PowerShell script to assist with finding DLL hijacks

Shellcode runner in GO that incorporates shellcode encryption, remote process injection, block dlls, and spoofed parent process

Identifies the bytes that Microsoft Defender flags on.

Tool for extracting information from newly spawned processes

shell for nasm

Corelan Repository for mona.py

A collaborative, multi-platform, red teaming framework

Adversary Emulation Framework

DAFT: Database Audit Framework & Toolkit

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

Python clone of CryptoLocker