The DCERPC only printerbug.py version

SilentButDeadly is a network communication blocker specifically designed to neutralize EDR/AV software by preventing their cloud connectivity using Windows Filtering Platform (WFP). This version fo…

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By following this approach, a security researcher will hopefully…

Cobalt Strike BOF for beacon/shellcode injection using fork & run technique with Draugr synthetic stack frames

Main Sigma Rule Repository

Gain insights into COM/DCOM implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By following this approach, a security researcher will hopeful…

EDR-Redir : a tool used to redirect the EDR's folder to another location.

Obfuscating function calls using Vectored Exception Handlers by redirecting execution through exception-based control flow. Uses byte swapping without memory or assembly allocation.

eBPF distributed networking observability tool for Kubernetes

Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.

Group Policy Objects manipulation and exploitation framework

Six Degrees of Organization Admin

Detection of indirect syscall techniques using hardware breakpoints and vectored exception handling.

The OUned A D Org Units ACL exploitation through gPLink poisoning

BloodyAD is an Active Directory Privilege Escalation Framework

Group Policy Eater is a PowerShell module that aims to gather information about Group Policies but also allows fixing issues that you may find in them.

evilwaf is a penetration testing tool designed to detect and bypass common Web Application Firewalls (WAFs).

Advanced Active Directory network topology analyzer with SMB validation, multiple authentication methods (password/NTLM/Kerberos), and comprehensive network discovery. Export results as BloodHound‑…

Lightweight binary that joins a device to a Tailscale network and exposes a local SOCKS5 proxy. Designed for red team operations and ephemeral access into restricted environments using Tailscale’s …

Active Directory and Internal Pentest Cheatsheets

Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware. Brought to you by Winsider Seminars & Solutions, Inc. @ http://www.windows-internals…

Home-Grown-Red-Team

A deliberately vulnerable Microsoft Entra ID environment. Learn identity security through hands-on, realistic attack challenges.

Timeroasting scripts by Tom Tervoort

A novel cryptocurrency focused on privacy and accessibility.

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.