OCSF Schema

BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions

Documents Exfiltration project for fun and educational purposes

A C# utility for interacting with SCCM

Windows kernel and user mode emulation.

Advanced driver monitoring utility.

SharpUp is a C# port of various PowerUp functionality.

Achieve execution using a custom keyboard layout

Simple (relatively) things allowing you to dig a bit deeper than usual.

Cobalt Strike BOF to list Windows Pipes & return their Owners & DACL Permissions

Command and Control Framework written in C#.

DLL Hijack Search Order Enumeration BOF

InlineExecute-Assembly is a proof of concept Beacon Object File (BOF) that allows security professionals to perform in process .NET assembly execution as an alternative to Cobalt Strikes traditiona…

Situational Awareness commands implemented using Beacon Object Files

Dump the memory of a PPL with a userland exploit

A BOF to interact with COM objects associated with the Windows software firewall.

LoadLibrary for offensive operations

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

Extract and Deobfuscate XLM macros (a.k.a Excel 4.0 Macros)

Displays a bitmap on Task Manager's CPU activity view. For systems with > 64 CPUs.

Signature base for my scanner tools

A Simple Ransomware Vaccine