A collection of one-liners for bug bounty hunting.

1337 Wordlists for Bug Bounty Hunting

A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.

This is a simple bash script to fix errors with apt update, upgrade MetaSploit and run some upgrades to improve the system usability without breaking it, by using Pimpmykali script.

This map lists the essential techniques to bypass anti-virus and EDR

Check your WAF before an attacker does

Some notes and examples for cobalt strike's functionality

Extracting NetNTLM without touching lsass.exe

Syscall Shellcode Loader (Work in Progress)

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

Remove AV/EDR Kernel ObRegisterCallbacks、CmRegisterCallback、MiniFilter Callback、PsSetCreateProcessNotifyRoutine Callback、PsSetCreateThreadNotifyRoutine Callback、PsSetLoadImageNotifyRoutine Callback...

.NET 2.0 CLR project to retrieve saved browser credentials from Google Chrome, Mozilla Firefox and Microsoft Internet Explorer/Edge.

SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.

Arsenal is just a quick inventory and launcher for hacking programs

A Bypass Anti-virus Software Lateral Movement Command Execution Tool

SafetyKatz is a combination of slightly modified version of @gentilkiwi's Mimikatz project and @subtee's .NET PE Loader

SMBMap is a handy SMB enumeration tool

a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )

SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.

Automation for internal Windows Penetrationtest / AD-Security

C# Data Collector for BloodHound

getsystem via parent process using ps1 & embeded c#

A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.

shellcode loader for your evasion needs

An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

OWASP PTK - application security browser extension.

A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL Lsass, no dbghelp.lib calls.

The Network Execution Tool