NEBULA is a PowerShell tool designed for testing Windows execution and persistence methods, including LOLBAS techniques. It provides a menu-driven interface for security researchers and teams to execute tests and log results. Example payloads sourced from Atomic Red Team are included for safe experimentation.

Win11Debloat is a PowerShell script designed to simplify the process of removing unwanted pre-installed apps and modifying various Windows settings. It offers options for both casual users and system administrators to customize their Windows experience easily. The script allows for quick changes while ensuring that most modifications can be reverted later.

TrollRPC is a library designed to blind RPC calls based on UUID and OPNUM, primarily for bypassing security mechanisms like AMSI by modifying specific RPC calls. Recent updates include methods to block file access by antivirus software and specific instructions for Windows 10 and Windows 11 users. The tool is intended for educational purposes, emphasizing the need for creativity in bypassing security features.