ERP beyond your fridge - Grocy is a web-based self-hosted groceries & household management solution for your home

POC CVE-2022-30190 : CVE 0-day MS Offic RCE aka msdt follina

Script to remove Windows 10 bloatware.

PowerShell examples for articles published on https://office365itpros.com and https://practical365.com. See https://o365itpros.gumroad.com/l/M365PS for the Automating Microsoft 365 with PowerShell …

Command line interface to dump LSASS memory to disk via SilentProcessExit

KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).

VECTR is a tool that facilitates tracking of your red and blue team testing activities to measure detection and prevention capabilities across different attack scenarios

CVE-2021-40444 PoC

Go configuration with fangs

.Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py

Take a list of domains and probe for working HTTP and HTTPS servers

Default signature for Jaeles Scanner

The Swiss Army knife for automated Web Application Testing

Captchas don't have to be boring

Small and highly portable detection tests based on MITRE's ATT&CK.

Proof of Concept Exploit for vCenter CVE-2021-21972

Exploit to SYSTEM for CVE-2021-21551

A protective and Low Level Shellcode Loader that defeats modern EDR systems.

Tool to bypass LSA Protection (aka Protected Process Light)

Shellcode implementation of Reflective DLL Injection. Convert DLLs to position independent shellcode

Converts PE into a shellcode

juicypotato for win10 > 1803 & win server 2019

TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!

A tool for checking if MFA is enabled on multiple Microsoft Services

The Browser Exploitation Framework Project

Open source pre-operation C2 server based on python and powershell

Powershell reverse shell using HTTP/S protocol with AMSI bypass and Proxy Aware