OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red …

OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red …
Script that wraps around multitude of packers, protectors, obfuscators, shellcode loaders, encoders, generators to produce complex protected Red Team implants. …
A Nim implementation of reflective PE-Loading from memory. The base for this code was taken from RunPE-In-Memory – which I …
hoaxshell is an unconventional Windows reverse shell, currently undetected by Microsoft Defender and possibly other AV solutions as it is …
Welcome! This is a utility that can be compiled with Visual Studio 2019 (or newer). The goal of this program …
A flexible tool that creates a minidump of the LSASS process. 1. Features It uses syscalls (with SysWhispers2) for most …
Nimcrypt2 is yet another PE packer/loader designed to bypass AV/EDR. It is an improvement on my original Nimcrypt project, with …
EXOCET is superior to Metasploit’s “Evasive Payloads” modules as EXOCET uses AES-256 in GCM Mode (Galois/Counter Mode). Metasploit’s Evasion Payloads …
Certify is a C# tool to enumerate and abuse misconfigurations in Active Directory Certificate Services (AD CS). @harmj0y and @tifkin_ …
SharpDPAPI is a C# port of some DPAPI functionality from @gentilkiwi‘s Mimikatz project. I did not come up with this …