Volatility 3.0 development

A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

A collaborative, multi-platform, red teaming framework

RustRedOps is a repository for advanced Red Team techniques and offensive malware, focused on Rust 🦀

Extract and execute a PE embedded within a PNG file using an LNK file.

Embed a payload inside a PNG file

Create Anti-Copy DRM Malware

Utilizing TLS callbacks to execute a payload without spawning any threads in a remote process

Implementing the ghostly hollowing PE injection technique using tampered syscalls.

Dump ntds.dit really fast

A C++ proof of concept demonstrating the exploitation of Windows Protected Process Light (PPL) by leveraging COM-to-.NET redirection and reflection techniques for code injection. This PoC showcases…

My blog about cyber security, hacking, software engineering and much more.

Some of the presentations, workshops, and labs I gave at public conferences.

Boilerplate to develop raw and truly Position Independent Code (PIC).

A truly Position Independent Code (PIC) NimPlant C2 beacon written in C, without reflective loading.

A Mythic Agent written in PIC C.

Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel

pwninit - automate starting binary exploit challenges

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Generate and Manage KeyCredentialLinks

A tool for automating cracking methodologies through Hashcat from the TrustedSec team.

Tool for viewing NTDS.dit

Your Skyfall Infrastructure Pack

psexecsvc - a python implementation of PSExec's native service implementation

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

Red teaming tool to dump LSASS memory, bypassing basic countermeasures.