inosec2,github

threadstackspoofer

Thread Stack Spoofing - PoC for an advanced In-Memory evasion technique allowing to better hide injected shellcode's memory allocation from scanners and analysts.

thundershell

Python / C# Unmanaged PowerShell based RAT

titan

Titan: A generic user defined reflective DLL for Cobalt Strike

titanldr

Titan: A crappy Reflective Loader written in C and assembly for Cobalt Strike. Redirects DNS Beacon over DoH

tokenplayer

Manipulating and Abusing Windows Access Tokens.

tokenuniverse

An advanced tool for working with access tokens and Windows security policy.

tor-router

A tool that allow you to make TOR your default gateway and send all internet connections under TOR (as transparent proxy) for increase privacy/anonymity without extra unnecessary code.

torkill

trigen

Trigen is a Python script which uses different combinations of Win32 function calls in generated VBA to execute shellcode.

tuktuk

Tool for catching and logging different types of requests.

tunna

Tunna is a set of tools which will wrap and tunnel any TCP communication over HTTP. It can be used to bypass network restrictions in fully firewalled environments.

uacme

Defeating Windows User Account Control

ultimatewdacbypasslist

A centralized resource for previously documented WDAC bypass techniques

ultra

A Small Poc On An Encryption/Decryption Algorithm Used As A File Locker

unhook-bof

Remove API hooks from a Beacon process.

unhookingpatch

Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime

unwinder

Another approach to thread stack spoofing.

urlgrab

A golang utility to spider through a website searching for additional links.

urlprobe

Urls status code & content length checker

vajra

Vajra is a highly customizable target and scope based automated web hacking framework to automate boring recon tasks and same scans for multiple target during web applications penetration testing.