MarkusKrell

MarkusKrell's Stars

• BakkerJan/evilginx3

  sturdy-chainsaw

  4914

• Azure/Stormspotter

  Azure Red Team tool for graphing Azure and Azure Active Directory objects

  Language:Python1.5k205

• AlteredSecurity/365-Stealer

  365-Stealer is a phishing simualtion tool written in python3. It can be used to execute Illicit Consent Grant Attack.

  Language:PHP44084

• mdsecactivebreach/o365-attack-toolkit

  A toolkit to attack Office365

  Language:Go1k211

• netero1010/EDRSilencer

  A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.

  Language:C1.1k137

• BloodHoundAD/AzureHound

  Azure Data Exporter for BloodHound

  Language:Go53271

• mgeeky/decode-spam-headers

  A script that helps you understand why your E-Mail ended up in Spam

  Language:Python53876

• rvrsh3ll/FindIngressEmail

  Find Inbound Email Domains

  Language:PowerShell152

• RhinoSecurityLabs/pacu

  The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.

  Language:Python4.3k686

• dirkjanm/ROADtools

  A collection of Azure AD/Entra tools for offensive and defensive security purposes

  Language:Python1.8k259

• dafthack/GraphRunner

  A Post-exploitation Toolset for Interacting with the Microsoft Graph API

  Language:PowerShell84488

• SpecterOps/BloodHound

  Six Degrees of Domain Admin

  Language:Go1k99

• post-cyberlabs/Offensive_tools

  Language:Java40288

• ine-labs/AWSGoat

  AWSGoat : A Damn Vulnerable AWS Infrastructure

  Language:PHP1.7k1k

• aws-samples/aws-customer-playbook-framework

  This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.

  51498

• nyxgeek/lyncsmash

  locate and attack Lync/Skype for Business

  Language:Python33067

• nccgroup/ScoutSuite

  Multi-Cloud Security Auditing Tool

  Language:Python6.6k1k

• prowler-cloud/prowler

  Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more

  Language:Python10.5k1.5k

• rvrsh3ll/TokenTactics

  Azure JWT Token Manipulation Toolset

  Language:PowerShell58092

• Azure/Microsoft-Defender-for-Cloud

  Welcome to the Microsoft Defender for Cloud community repository

  Language:PowerShell1.7k750

• BloodHoundAD/BloodHound

  Six Degrees of Domain Admin

  Language:PowerShell9.7k1.7k

• 1N3/Sn1per

  Attack Surface Management Platform

  Language:Shell7.9k1.8k

• smicallef/spiderfoot

  SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

  Language:Python12.6k2.2k

• kgretzky/evilginx2

  Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

  Language:Go10.6k1.9k

• Mr-Un1k0d3r/EDRs

  Language:C2k348

• ly4k/Certipy

  Tool for Active Directory Certificate Services enumeration and abuse

  Language:Python2.3k313

• dirkjanm/mitm6

  pwning IPv4 via IPv6

  Language:Python1.7k244

• gentilkiwi/mimikatz

  A little tool to play with Windows security

  Language:C19.2k3.7k

• lgandx/Responder

  Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

  Language:Python5.3k756

• p0dalirius/Coercer

  A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

  Language:Python1.7k179