An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed. - iknowjason/AutomatedEmulation

SLAM explores the residual attack surface of Spectre on modern (and even future) CPUs equipped with Intel LAM or similar features. Instead of targeting new transient execution techniques (like BHI or Inception), SLAM focuses on exploiting a common but previously…

SharePoint Pre-Auth Code Injection RCE chain CVE-2023-29357 & CVE-2023-24955 PoC - SharePwn_public.py

Patching "signtool.exe" to accept expired certificates for code-signing. - hackerhouse-opensource/SignToolEx

PingRAT secretly passes C2 traffic through firewalls using ICMP payloads. - umutcamliyurt/PingRAT

Windows Local Privilege Escalation Cookbook. Contribute to nickvourd/Windows-Local-Privilege-Escalation-Cookbook development by creating an account on GitHub.

Kitploit is temporarily under maintenance. We’ll be back shortly with improvements.

Abuse leaked token handles. Contribute to blackarrowsec/Handly development by creating an account on GitHub.

Tools for finding SMTP smuggling vulnerabilities. Contribute to The-Login/SMTP-Smuggling-Tools development by creating an account on GitHub.

Contribute to zhuxinlang/zhuxinlang.github.io development by creating an account on GitHub.

Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments. - GitHub - BC-SECURITY/Moriarty: Mor...

Windows Local Privilege Escalation Cookbook. Contribute to nickvourd/Windows-Local-Privilege-Escalation-Cookbook development by creating an account on GitHub.

Collect-MemoryDump - Automated Creation of Windows Memory Snapshots for DFIR - LETHAL-FORENSICS/Collect-MemoryDump

ThreatSeeker: Threat Hunting via Windows Event Logs - ine-labs/ThreatSeeker

SSH-Snake is a self-propagating, self-replicating, file-less noscript that automates the post-exploitation task of SSH private key and host discovery. - MegaManSec/SSH-Snake

Overview Visual Studio is a complex and powerful IDE developed by Microsoft and comes with a lot of features that can be interesting from a red team perspective. During this...

This repository presents a proof-of-concept of CVE-2023-7028 - Vozec/CVE-2023-7028

Use hardware breakpoint to dynamically change SSN in run-time - senzee1984/MutationGate

ScareCrow - Payload creation framework designed around EDR bypass. - Tylous/ScareCrow

Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST - Tylous/Freeze.rs

Demonized Shell is an Advanced Tool for persistence in linux. - MatheuZSecurity/D3m0n1z3dShell