AI Red Teaming playground labs to run AI Red Teaming trainings including infrastructure.

Entra conditional access policy auditor

A collection of position independent coding resources

Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.

A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications. This can be done without requiring access to SCCM server.

Domain Password Audit Tool for Pentesters

So, you think you have MFA? AAD/ROPC/MFA bypass testing tool

Evade EDR's the simple way, by not touching any of the API's they hook.

Dump cookies and credentials directly from Chrome/Edge process memory

A BOF that runs unmanaged PEs inline

Evilginx Phishing Infrastructure Setup Guide - Securing Evilginx and Gophish Infrastructure, Removing IOCs, Phishing TTPs

A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

Collection of remote authentication triggers in C#

Perfect DLL Proxying using forwards with absolute paths.

The most advanced free and open-source browser fingerprinting library

Also known by Microsoft as Knifecoat 🌶️

Because AV evasion should be easy.

Azure JWT Token Manipulation Toolset

LinkedIn enumeration tool to extract valid employee names from an organization through search engine scraping

Convert any binary data to a PNG image file and vice versa.

Tool to remotely dump secrets from the Windows registry

Simple (relatively) things allowing you to dig a bit deeper than usual.

Browser extension that extracts users from LinkedIn company pages

A COFF loader made in Rust

Packer and vagrant scripts to automate building Windows and Linux machines on vCenter

Ansible playbooks for instrumenting a Red Team environment with RedElk