A living guide to lesser-known and evasive Windows API abuses used in malware, with practical reverse engineering notes, YARA detections, and behavioral indicators.

OSWE, OSEP, OSED, OSEE

Homemade Aggressor scripts kit for Cobalt Strike

PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.

Find potential DLL Sideloads on your windows computer

Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates when…

reNgine-ng is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuo…

A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader

Parses Snaffler output file and generate beautified outputs.

Automating the easy stuff (for internal pentesting).

SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.

Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection

HTTP 403 bypass tool

A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques.

generate CobaltStrike's cross-platform payload

OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises.

Tools and Techniques for Red Team / Penetration Testing

A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.

Execute unmanaged Windows executables in CobaltStrike Beacons