A tool to convert windows registry export files into windows hive files that can be used to replace NTUSER.MAN

Chisel new generation, written in rust. SSH under WSS with some customization.

Transform your favorite cities into beautiful, minimalist designs. MapToPoster lets you create and export visually striking map posters with code.

Aliasr is a modern, feature-rich TUI launcher for penetration testing commands inspired by Arsenal, but with significantly improved functionality.

One WSL BOF to rule them all

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

Home Assistant integration for Ajax Security Systems

Create stunning screen recordings for free. Open-source, no subscriptions, no watermarks, and free for commercial use. An alternative to Screen Studio.

Next Generation of DripLoader with Indirect Syscalls and .node Side-loading

A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.

EvilMist is a collection of scripts and utilities designed to support cloud penetration testing & red teaming. The toolkit helps identify misconfigurations, assess privilege-escalation paths, and s…

A Windows Named Pipe Multi-tool / Proxy

Man-In-The-Service tool to turn servers against their admins

rep+ — Burp-style HTTP Repeater for Chrome DevTools with built‑in AI to explain requests and suggest attacks

BOF to run PE in Cobalt Strike Beacon without console creation

Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames

SilentButDeadly is a network communication blocker specifically designed to neutralize EDR/AV software by preventing their cloud connectivity using Windows Filtering Platform (WFP). This version fo…

Proof-of-Concept tool for extracting NTLMv1 hashes from sessions on modern Windows systems.

Group Policy Objects manipulation and exploitation framework

A metamorphic binary transformation engine based on r2pipe and radare2.

In-depth ldap enumeration utility

A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.

adws enumeration bof

Scripts for statically unpacking Pyarmor v8+

SetupHijack is a security research tool that exploits race conditions and insecure file handling in Windows applications installer and update processes.

Collect infrastructure and permissions data from vCenter and export it as a BloodHound‑compatible graph using Custom Nodes/Edges

comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reduction (ASR) rules without Admin privileges

Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.

a tmux-driven, reverse shell manager with an identity crisis