BANANAMAGIC's Stars
swisskyrepo/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
fortra/impacket
Impacket is a collection of Python classes for working with network protocols.
hasherezade/pe-sieve
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
swisskyrepo/SSRFmap
Automatic SSRF fuzzer and exploitation tool
MegaManSec/SSH-Snake
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
Mazars-Tech/AD_Miner
AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses
swisskyrepo/InternalAllTheThings
Active Directory and Internal Pentest Cheatsheets
honze-net/nmap-bootstrap-xsl
A Nmap XSL implementation with Bootstrap.
TrimarcJake/Locksmith
A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.
Wh04m1001/DFSCoerce
xaitax/CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability
Microsoft-Outlook-Remote-Code-Execution-Vulnerability
assume-breach/Home-Grown-Red-Team
vdjagilev/nmap-formatter
A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot), sqlite, excel and d2-lang. Simply put it's nmap converter.
quietvoid/dovi_tool
dovi_tool is a CLI tool combining multiple utilities for working with Dolby Vision.
Sh3lldon/FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.
reveng007/DarkWidow
Indirect Dynamic Syscall, SSN + Syscall address sorting via Modified TartarusGate approach + Remote Process Injection via APC Early Bird + Spawns a sacrificial Process as target process + (ACG+BlockDll) mitigation policy on spawned process + PPID spoofing + Api resolving from TIB + API hashing
stacksmashing/pico-tpmsniffer
A simple, very experimental TPM sniffer for LPC bus
swisskyrepo/HardwareAllTheThings
Hardware/IOT Pentesting Wiki
swisskyrepo/SharpLAPS
Retrieve LAPS password from LDAP
waelmas/frameless-bitb
A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.
WithSecureLabs/lolcerts
A repository of code signing certificates known to have been leaked or stolen, then abused by threat actors
Kudaes/Shelter
ROP-based sleep obfuscation to evade memory scanners
mtth-bfft/adeleg
Active Directory delegation management tool
senzee1984/InflativeLoading
Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.
Hackndo/WebclientServiceScanner
Python tool to Check running WebClient services on multiple targets based on @leechristensen
florylsk/ExecIT
Execute shellcode files with rundll32
hackerhouse-opensource/Artillery
CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administrator.
rasta-mouse/CsWhispers
Source generator to add D/Invoke and indirect syscall methods to a C# project.
Hackcraft-Labs/Fairplay
Artifact monitoring that ensures fairplay
decoder-it/DFSCoerce-exe-2
DFSCoerce exe revisited version with custom authentication