Ruler
A tool for interacting with Exchange servers remotely and exploiting client-side Outlook features.
OneFuzz is a self-hosted Fuzzing-As-A-Service platform initially launched by a small group in MSR, now a significant internal platform within Microsoft, aimed at driving security and quality into products through continuous developer-driven fuzzing.
A tool for interacting with Exchange servers remotely and exploiting client-side Outlook features.
A blog post about abusing exported functions and exposed DCOM interfaces for pass-thru command execution and lateral movement
Utilizing Alternate Data Streams (ADS) to bypass AppLocker default policies by loading DLL/CPL binaries.
Data exfiltration & infiltration tool using text-based steganography to evade security controls.
A proxy aware C2 framework for penetration testing, red teaming, post-exploitation, and lateral movement with modular format and highly configurable payloads.
Pwndrop is a self-deployable file hosting service for red teamers, allowing easy upload and sharing of payloads over HTTP and WebDAV.