Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…

This is for Ethical Use only! Update:- Currently the payloads can only bypass real time monitoring and not cloud based detections, due to a lot of virus total submissions. Works like a charm in lab…

My Notes about Penetration Testing

This is my personal repo, which includes bug bounty tips, a collection of tools, one-liners, and other resources I personally prefer while hunting. It is still under development, so feel free to co…

Mirage is a PoC memory evasion technique that relies on a vulnerable VBS enclave to hide shellcode within VTL1.

ArgFuscator.net is an open-source, stand-alone web application that helps generate obfuscated command lines for common system-native executables.

This repo contains C/C++ snippets that can be handy in specific offensive scenarios.

A collection of one-liners for bug bounty hunting.

A PoC for Early Cascade process injection technique.

This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at the forefront of the field. It serves as a central repository…

Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive da…

A collection of awesome one-liner scripts especially for bug bounty tips.

🪅 Windows User Space Emulator

Simple script to bypass AMSI on Win 10 and Win 11 by exploiting AmsiOpenSession

Tool to decrypt App-Bound encrypted keys in Chrome 127+, using the IElevator COM interface with path validation and encryption protections.

Proof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow

An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution

Evasive shellcode loader

A post exploitation tool based on a web application, focusing on bypassing endpoint protection and application whitelisting

My collection of malware dev links

Disables all Windows Security Controls

Recon script that will enumerate IPs / Domains

MetaX - Advanced XSS Vulnerability Detector

Shellcode execution via fibers and xor encrypted mac address shellcode

🙃 A delightful community-driven (with 1700+ contributors) framework for managing your zsh configuration. Includes nearly 300 optional plugins (rails, git, OSX, hub, capistrano, brew, ant, php, pyth…

Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.