Stars
High-performance secrets scanner. CLI, Go library, Burp Suite extension, and Chrome extension. 459 detection rules with live credential validation.
Tyche is a Mythic HTTPX Profile Generator used to create Malleable C2 Profiles.
A library to decode EazFuscator's encrypted symbol names, if you have the password.
Proxy system that routes traffic through Cloudflare Workers for IP rotation and anonymity
Havoc Professional backend plugin to allow ingesting of events and logs to Ghostwriter
HvLoader.efi is an EFI application for loading an external hypervisor loader
Weaponize signed .NET ClickOnce applications for initial access by hijacking a dependency DLL via AppDomainManager injection and loading a C# port of ProxyBlob Agent.
A Beacon Object File (BOF) that talks directly to Windows authentication packages through the LSA untrusted/trusted client interface, without touching LSASS process memory.
A simple speed reading application that supports .txt, .pdf, and image text extraction
Lightweight macOS baseline checks - collect config signals and send them as JSON to your SIEM
Objective-C library and console to interact with Heimdal APIs for macOS Kerberos
Code for the paper "Defeating Prompt Injections by Design"
Proof-of-concept code for understanding the allow-jit entitlement on macOS
Proof-of-concept for the paper "StackWarp: Breaking AMD SEV-SNP Integrity via Deterministic Stack-Pointer Manipulation through the CPU’s Stack Engine" (USENIX Security 2026)
Patch termsrv.dll so that multiple remote users can open an RDP session on a non-Windows Server computer
Project for generating and identifying deceptive LNK files.
Erebus is an Initial Access wrapper for the Mythic Command & Control Server. It converts existing Mythic shellcode into payloads specifically used for phishing and IA operations.
VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit
Automated Pass-the-Ticket (PtT) attack. Standalone alternative to Rubeus and Mimikatz for this attack. Implemented in C#, C++, Crystal, Python and Rust
Automatic Exploit Generation with LLMs
A cross-platform C++ framework for building Windows shellcode
The absolute trainer to light up AI agents.