Personal blog on security

Windows kernel backdoor via registering a malicious SMB handler

🤓 Build your own (insert technology here)

A collection of open source and commercial tools that aid in red team operations.

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification

Runtime Process Manipulation

Aggregation of Cobalt Strike's aggressor scripts.

Quick Malicious ClickOnceGenerator for Red Team

PowerView menu for Cobalt Strike

Random Tools

Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS

Cmd.exe Command Obfuscation Generator & Detection Test Harness

A tool to elevate privilege with Windows Tokens

Empire is a PowerShell and Python post-exploitation agent.

Koadic C3 COM Command & Control - JScript RAT

Infection Monkey - An automated pentest tool

Scriptable dynamic runtime execution of malware

An Information Security Reference That Doesn't Suck

Reverse proxy grapher

nextnet is a pivot point discovery tool written in Go.

A pure python, post-exploitation, RAT (Remote Administration Tool) for macOS / OSX.

A portable console aimed at making pentesting with PowerShell a little easier.

Python api for usage with cobalt strike's External C2 specification

Automate creating resilient, disposable, secure and agile infrastructure for Red Teams.

Runbooks for different topics

Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode