PEASS - Privilege Escalation Awesome Scripts SUITE

Impacket is a collection of Python classes for working with network protocols.

Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!

Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

🐬 Feature-rich, stable and customizable Flipper firmware

The Network Execution Tool

Two new offensive techniques using Windows Fibers: PoisonFiber (The first remote enumeration & Fiber injection capability POC tool) PhantomThread (An evolved callstack-masking implementation)

Command line tool to edit resources of exe

Create Anti-Copy DRM Malware

OpenSSL based Authenticode signing for PE/MSI/Java CAB files

A Collection of Over 60 Scripts - updated specifically for the BadUSB function on the FlipperZero.

Syscall Shellcode Loader

Tool to remotely dump secrets from the Windows registry

Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection

Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 9…

Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in Windows environments.

The swiss army knife of LSASS dumping

Real fucking shellcode encryption tool.

MFKey for the Flipper Zero 🐬

802.11 Attack Tool

A sophisticated, covert Windows-based credential dumper using C++ and MASM x64.

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

ScriptSentry finds misconfigured and dangerous logon scripts.

Dirty PoC on how to abuse S1's VEH for Vectored Syscalls and Local Execution

Trying to tame the three-headed dog.

A PowerShell tool that takes strong inspiration from CrackMapExec / NetExec