PE Packer/Crypter Source
Packer/crypter source code for PE executables. Encrypts the .text section, adds decryption stub, modifies entry point.
Arsenal
Professional offensive security tools & exploit frameworks
120
Tools
12
Categories
Fileless Malware Loader (PowerShell)
PowerShell loader that downloads and executes payload in memory without writing to disk. AMSI bypass included.
C2 Communication Protocol Library
Python/C library for C2 communication over HTTP/S, DNS, and ICMP. Custom protocol with encryption and steganography.
Persistence Techniques Cookbook (Windows)
10 Windows persistence techniques implemented in code: Registry, Scheduled Tasks, WMI Events, COM Hijack, DLL Search Order, and more.
Malleable C2 Profile Generator
Malleable C2 profile generator for Cobalt Strike and Sliver. Produces profiles that mimic legitimate CDN, cloud service, and popular app traffic.
SOCKS5 Proxy Pivoting Module
Standalone SOCKS5 pivoting module in C. Static binary under 100KB that creates a SOCKS5 proxy on the compromised host for pivoting into internal networks.
Process Injection Techniques Library
C/C++ library with 8 Windows process injection techniques: Classic DLL, Process Hollowing, APC Queue, Syscall-based, and more.
Phishing Infrastructure Deployer
Bash/Terraform script that deploys complete phishing infrastructure: GoPhish + Evilginx2 + categorized domain + SSL certificates.
BOF Collection for Cobalt Strike
Pack of 15 Beacon Object Files (BOFs) for Cobalt Strike: enumeration, credential access, lateral movement, and defense evasion.
Active Directory Enumeration Script
Pure PowerShell script (no external modules) for complete Active Directory enumeration: users, groups, GPOs, ACLs, trusts, SPNs.
Kerberoast Extractor
Python script that performs Kerberoasting against Active Directory: requests TGS tickets for SPN-enabled accounts and exports hashes for offline cracking.
Covenant C2 Agent Builder
Custom .NET C2 agent generator: HTTP/HTTPS/SMB stagers with obfuscation, in-memory compilation, and AMSI evasion.