Windows Local Privilege Escalation Cookbook. Contribute to nickvourd/Windows-Local-Privilege-Escalation-Cookbook development by creating an account on GitHub.

Kitploit is temporarily under maintenance. We’ll be back shortly with improvements.

Abuse leaked token handles. Contribute to blackarrowsec/Handly development by creating an account on GitHub.

Tools for finding SMTP smuggling vulnerabilities. Contribute to The-Login/SMTP-Smuggling-Tools development by creating an account on GitHub.

Contribute to zhuxinlang/zhuxinlang.github.io development by creating an account on GitHub.

Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments. - GitHub - BC-SECURITY/Moriarty: Mor...

Windows Local Privilege Escalation Cookbook. Contribute to nickvourd/Windows-Local-Privilege-Escalation-Cookbook development by creating an account on GitHub.

Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR - LETHAL-FORENSICS/Collect-MemoryDump

ThreatSeeker: Threat Hunting via Windows Event Logs - ine-labs/ThreatSeeker

SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery. - MegaManSec/SSH-Snake

Overview Visual Studio is a complex and powerful IDE developed by Microsoft and comes with a lot of features that can be interesting from a red team perspective. During this...

This repository presents a proof-of-concept of CVE-2023-7028 - Vozec/CVE-2023-7028

Use hardware breakpoint to dynamically change SSN in run-time - senzee1984/MutationGate

ScareCrow - Payload creation framework designed around EDR bypass. - Tylous/ScareCrow

Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST - Tylous/Freeze.rs

Demonized Shell is an Advanced Tool for persistence in linux. - MatheuZSecurity/D3m0n1z3dShell

An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed. - iknowjason/AutomatedEmulation

FalconHound is a blue team multi-tool. It allows you to utilize and enhance the power of BloodHound in a more automated fashion. It is designed to be used in conjunction with a SIEM or other log ag...

Cobalt Strike HTTPS beaconing over Microsoft Graph API - GitHub - RedSiege/GraphStrike: Cobalt Strike HTTPS beaconing over Microsoft Graph API

IoctlHunter is a command-line tool designed to simplify the analysis of IOCTL calls made by userland software targeting Windows drivers. - Z4kSec/IoctlHunter

Implementation of Indirect Syscall technique to pop a calc.exe - oldboy21/SyscallMeMaybe