Repository where I hold random detection and threat hunting queries that I come up with based on different sources of information (or even inspiration).

ZITADEL - Identity infrastructure, simplified for you.

Cloud-native SIEM for intelligent security analytics for your entire enterprise.

Privilege Escalation Enumeration Script for Windows

The goal of this repository is to document the most common techniques to bypass AppLocker.

A build system and primary set of packages for Termux.

Immersive virtual office built with Phaser, React, Redux, PeerJS, and Colyseus.

👀 A modern watch command. Time machine and pager etc.

Fancy reverse and bind shell handler

The Havoc Framework

Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders Stardust

Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)

notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

Fast, correct Python JSON library supporting dataclasses, datetimes, and numpy

The simplest, fastest repository for training/finetuning medium-sized GPTs.

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique present…

This repo covers some code execution and AV Evasion methods for Macros in Office documents

macro_pack is a tool by @EmericNasi used to automatize obfuscation and generation of Office documents, VB scripts, shortcuts, and other formats for pentest, demo, and social engineering assessments…

Deluder is a tool for intercepting traffic of proxy unaware applications. Currently, Deluder supports OpenSSL, GnuTLS, SChannel, WinSock and Linux Sockets out of the box. ⚡

A simple ptrace-less shared library injector for x64 Linux

PowerShell script helping Incident Responders discover potential adversary persistence mechanisms.

The engine of the RenderCV App

Spoofing desktop login applications with WinForms and WPF

Collection of UAC Bypass Techniques Weaponized as BOFs

SharpUp is a C# port of various PowerUp functionality.

Windows x86_64bit shellcode written in Nasm

Generate Shellcode Loaders & Injects

Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into…