MarkusKrell's Stars
BakkerJan/evilginx3
sturdy-chainsaw
Azure/Stormspotter
Azure Red Team tool for graphing Azure and Azure Active Directory objects
AlteredSecurity/365-Stealer
365-Stealer is a phishing simualtion tool written in python3. It can be used to execute Illicit Consent Grant Attack.
mdsecactivebreach/o365-attack-toolkit
A toolkit to attack Office365
netero1010/EDRSilencer
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
BloodHoundAD/AzureHound
Azure Data Exporter for BloodHound
mgeeky/decode-spam-headers
A script that helps you understand why your E-Mail ended up in Spam
rvrsh3ll/FindIngressEmail
Find Inbound Email Domains
RhinoSecurityLabs/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
dirkjanm/ROADtools
A collection of Azure AD/Entra tools for offensive and defensive security purposes
dafthack/GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
SpecterOps/BloodHound
Six Degrees of Domain Admin
post-cyberlabs/Offensive_tools
ine-labs/AWSGoat
AWSGoat : A Damn Vulnerable AWS Infrastructure
aws-samples/aws-customer-playbook-framework
This repository provides sample templates for security playbooks against various scenarios when using Amazon Web Services.
nyxgeek/lyncsmash
locate and attack Lync/Skype for Business
nccgroup/ScoutSuite
Multi-Cloud Security Auditing Tool
prowler-cloud/prowler
Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
rvrsh3ll/TokenTactics
Azure JWT Token Manipulation Toolset
Azure/Microsoft-Defender-for-Cloud
Welcome to the Microsoft Defender for Cloud community repository
BloodHoundAD/BloodHound
Six Degrees of Domain Admin
1N3/Sn1per
Attack Surface Management Platform
smicallef/spiderfoot
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
kgretzky/evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
Mr-Un1k0d3r/EDRs
ly4k/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
dirkjanm/mitm6
pwning IPv4 via IPv6
gentilkiwi/mimikatz
A little tool to play with Windows security
lgandx/Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
p0dalirius/Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.