A collection of scripts for activating Microsoft products using HWID / KMS38 / Online KMS activation methods with a focus on open-source code, less antivirus detection and user-friendliness.

Pandora is an simple undetectable open-source virus composed of agents, servers and masters. Can be used under Windows & Linux.

PoC for CVE-2021-4034 dubbed pwnkit

Fork from @rsmudge/armitage

OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.

Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator

Identifies the bytes that Microsoft Defender flags on.

ActiveScan++ Burp Suite Plugin

JNDI-Exploitation-Kit（A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps v…

Portable OpenSSH, all Win32-OpenSSH releases and wiki are managed at https://github.com/powershell/Win32-OpenSSH

Awesome Penetration Testing A collection of awesome penetration testing resources

The most complete Phishing Tool, with 32 templates +1 customizable

Impacket is a collection of Python classes for working with network protocols.

C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527

Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Coba…

Tool to manage user privileges

Proof-of-concept obfuscation toolkit for C# post-exploitation tools

A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.

A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

An open-source, free protector for .NET applications

InsecurePowerShell is PowerShell with some security features removed.

UPX - the Ultimate Packer for eXecutables

Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

My musings with PowerShell

Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.

An #OSINT Framework to perform various recon techniques on Companies, People, Phone Number, Bitcoin Addresses, etc., aggregate all the raw data, and give data in multiple formats.

Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost