Brandon-Russell-1's Stars
galkan/crowbar
Crowbar is brute forcing tool that can be used during penetration tests. It is developed to support protocols that are not currently supported by thc-hydra and other popular brute forcing tools.
Dec0ne/KrbRelayUp
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
ptoomey3/evilarc
Create tar/zip archives that can exploit directory traversal vulnerabilities
icsharpcode/ILSpy
.NET Decompiler with support for PDB generation, ReadyToRun, Metadata (&more) - cross-platform!
OlivierLaflamme/Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
unode/firefox_decrypt
Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles
sosdave/KeyTabExtract
Extracts Key Values from .keytab files
antonioCoco/JuicyPotatoNG
Another Windows Local Privilege Escalation from Service Account to System
Hackndo/pyGPOAbuse
Partial python implementation of SharpGPOAbuse
CCob/SweetPotato
Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
TsukiCTF/Lovely-Potato
Automating juicy potato local privilege escalation exploit for penetration testers
micahvandeusen/gMSADumper
Lists who can read any gMSA password blobs and parses them if the current user has access.
micahvandeusen/GenericPotato
Impersonating authentication over HTTP and/or named pipes.
internetwache/GitTools
A repository with 3 tools for pwn'ing websites with .git repositories available
teambi0s/dfunc-bypasser
This tool is for letting you know how strong your disable_functions is and how you can bypass that.
PortSwigger/add-custom-header
A Burp Suite extension to add a custom header (e.g. JWT)
arthaud/git-dumper
A tool to dump a git repository from a website
dirkjanm/krbrelayx
Kerberos unconstrained delegation abuse toolkit
ropnop/kerbrute
A tool to perform Kerberos pre-auth bruteforcing
AlessandroZ/LaZagne
Credentials recovery project
Kevin-Robertson/Powermad
PowerShell MachineAccountQuota and DNS exploit tools
dnSpy/dnSpy
.NET debugger and assembly editor
tennc/webshell
This is a webshell open source project
skelsec/minikerberos
Kerberos manipulation library in pure Python
Greenwolf/ntlm_theft
A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
ly4k/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
Flangvik/SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
GhostPack/Certify
Active Directory certificate abuse.
tothi/rbcd-attack
Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
xct/hashgrab
generate payloads that force authentication against an attacker machine