A GUI client for Windows, support Xray core and v2fly core and others

A Swiss Army knife for developers.

.NET debugger and assembly editor

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Trying to tame the three-headed dog.

A self-hosted Fuzzing-As-A-Service platform

Attack Surface Analyzer can help you analyze your operating system's security configuration for changes during software installation.

Identifies the bytes that Microsoft Defender flags on.

C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527

Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019

KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).

Active Directory certificate abuse.

CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.

A tool to create a JScript file which loads a .NET v2 assembly from memory.

SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.

A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container

A method of bypassing EDR's active projection DLL's by preventing entry point exection

Writing custom backdoor payloads with C# - Defcon 27 Workshop

SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by…

A tool to elevate privilege with Windows Tokens

RunasCs - Csharp and open version of windows builtin runas.exe

PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as well.

DevSkim is a set of IDE plugins, language analyzers, and rules that provide security "linting" capabilities.

SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。

Hunts out CobaltStrike beacons and logs operator command output

A tool for generating .NET serialized gadgets that can trigger .NET assembly load/execution when deserialized using BinaryFormatter from JS/VBS/VBA based scripts.

Framework for Kerberos relaying

A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.

Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.

Windows 权限提升 BadPotato