๐ Master of the virtual heist. Unlocks cyber doors while wearing a white hat. OSEP-certified ethical hacker, converting caffeine โ and curiosity ๐ค into code.
evilgophish. evilginx3 + gophish
2kcypherhound. Your template-based BloodHound terminal companion tool
452secretsdump.py. Enhanced version of secretsdump.py from Impacket. Adds multi-threading and accepts an input file with a list of target hosts for simultaneous secrets extraction.
257StoneKeeper. StoneKeeper C2, an experimental EDR evasion framework for research purposes
209ASPJinjaObfuscator. Heavily obfuscated ASP web shell generation tool.
176NativeThreadpool. Work, timer, and wait callback example using solely Native Windows APIs.
89IoDllProxyLoad. DLL proxy load example using the Windows thread pool API, I/O completion callback with named pipes, and C++/assembly
66HookFinder. Simple PoC to locate hooked functions by EDR in ntdll.dll
46CosmicRakp. CVE-2013-4786 Go exploitation tool
40AddRemoteDA.py. Active Directory post exploitation kit for security purposes
11DPAT. Domain Password Audit Tool for Pentesters
11SAMPasswordReuseChecker.py. A Python tool for detecting local admin password reuse across SAM files in an Active Directory environment, with support for user blacklisting and optional Excel reporting.
9CVE-2024-4956. CVE-2024-4956 Python exploitation utility
9ChatGPT-Prompts. Useful ChatGPT prompts for offensive security work
8hashcat. World's fastest and most advanced password recovery utility
8PoolParty. A set of fully-undetectable process injection techniques abusing Windows Thread Pools
8Shiro1Extractor. Python utility for extracting Apache Shiro 1 hashes from OrientDB files
2Shiro1Tools. Tools that were used during the development of the Apache Shiro 1 Hashcat module
2Nuages. A modular C2 framework
1BloodHoundQueryLibrary. A community-driven collection of BloodHound queries
1chisel. A fast TCP/UDP tunnel over HTTP
1CVE-2024-5764. CVE-2024-5764 exploitation script
1ldd_json_parser.sh. A bash script for parsing JSON files from ldapdomaindump, extracting and printing computer DNS names or user names to stdout.
1