Stars
An even funnier way to disable windows defender. (through WSC api)
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
AllForOne allows bug bounty hunters and security researchers to collect all Nuclei YAML templates from various public repositories,
A laboratory for learning secure web and mobile development in a practical manner.
Retrieves exported functions from a legitimate DLL and generates a proxy DLL source code/template for DLL proxy loading or sideloading
A simple tool to interact with web shells and command injection vulnerabilities
This map lists the essential techniques to bypass anti-virus and EDR
Lateral Movement via the .NET Profiler
eBook "Bypassing AVS by C#.NET Programming" (Free Chapters only)
Token Elevation to authorized user as SYSTEM or Domain Admins
Sandman is a NTP based backdoor for red team engagements in hardened networks.
A revamped and updated version of my original OneRuleToRuleThemAll hashcat rule
PowerRunAsSystem is a PowerShell script, also available as an installable module through the PowerShell Gallery, designed to impersonate the NT AUTHORITY/SYSTEM user and execute commands or launch …
Vajra is a UI-based tool with multiple techniques for attacking and enumerating in the target's Azure and AWS environment. It features an intuitive web-based user interface built with the Python Fl…
Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.
All the deals for InfoSec related software/tools this Black Friday
A collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.
Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop
The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.