Leak of any user's NetNTLM hash. Fixed in KB5040434

A repository holding Proof of Concepts for executing the calculator application via different file formats

100% Free , No need to be always online , Can be easily Reversed into it`s orginal source code

My PHP webshell

User Mode Windows Rootkit

Create polyglots for different file types

Original PoC for CVE-2023-30367

DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the default settings).

Exploit and report for CVE-2023-23396.

Quickly Extracts IP's, Email Addresses, Hashes, Files, Credit Cards, Social Security Numbers and a lot More From Text

Write-up for another forgotten Windows vulnerability (0day): Microsoft Windows Contacts (VCF/Contact/LDAP) syslink control href attribute escape, which was not fully fixed as CVE-2022-44666 in the …

A tiny Reverse Sock5 Proxy written in C :V

Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell process is created, the implant will be executed too.

Windows persistence injection using custom reflective DLL injection malware.

This tool can generate various types of dropper to hide your main payload

Track the GPS location of the user's smartphone or PC and capture a picture of the target, along with IP and device information.

Inspired by SEEDLab MD5 Collision Attack

Tool to create payload for exploiting zipslip vulnerability

Windows Password Removal ( very easy way )

Post-Exploitation script to exfiltrate 7-zip files

An example of how to use chromedp to run Chrome headless with the remote debugger port programmatically (is still a wrapper around the Chrome binary)

Perfect scripts for all the hustle we have with mailing

Simple POC of Voice C2 using Speech Recognition

An AV exclusion enumeration tool written in Python.

Automatically grabs screenshots from open VNC servers discovered on Shodan

CVE-2022-25943