Pinned Repositories
ESC
Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration features. While ESC can be a handy SQL Client for daily tasks, it was originally designed for targeting SQL Servers during penetration tests and red team engagements. The intent of the project is to provide an .exe, but also sample files for execution through mediums like msbuild and PowerShell.
goddi
goddi (go dump domain info) dumps Active Directory domain information
MicroBurst
A collection of scripts for assessing Microsoft Azure security
NetblockTool
Find netblocks owned by a company
PESecurity
PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.
PowerHuntShares
PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.
PowerShell
NetSPI PowerShell Scripts
PowerUpSQL
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
SQLInjectionWiki
A wiki focusing on aggregating and documenting various SQL injection methods
xssValidator
This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
NetSPI's Repositories
NetSPI/PowerUpSQL
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
NetSPI/MicroBurst
A collection of scripts for assessing Microsoft Azure security
NetSPI/PowerHuntShares
PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.
NetSPI/PESecurity
PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.
NetSPI/PowerShell
NetSPI PowerShell Scripts
NetSPI/gcpwn
Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @WebbinRoot
NetSPI/BOF-PE
An example reference design for a proposed BOF PE
NetSPI/ATEAM
NetSPI/AWSSigner
Burp Extension for AWS Signing
NetSPI/FuncoPop
Tools for attacking Azure Function Apps
NetSPI/PowerHunt
PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
NetSPI/Open-LLM-Security-Benchmark
NetSPI/CVE-2025-4660
PoC for CVE-2025-4660 demonstrating exploitation of the Forescout SecureConnector on Windows
NetSPI/BypassFuzzer
Fuzz 401/403/404 pages for bypasses
NetSPI/wopper
Automatically upload, execute, and delete a PHP file using Wordpress administrator credentials.
NetSPI/community-scripts
A collection of ZAP scripts and tips provided by the community - pull requests very welcome!
NetSPI/MSSQLHound
PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
NetSPI/set_sail
SailPoint IQService - RCE via Default Encryption Key
NetSPI/Snaffler
a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
NetSPI/bambdas
Bambdas collection for Burp Suite Professional and Community.
NetSPI/BAS-Public-Tools
NetSPI/browser-extension
NetSPI/Challenges
NetSPI/egressTester
Allows testing all egress ports, an updated version of egressbuster
NetSPI/test-setup-public
NetSPI/trufflehog-integration-netspi
NetSPi fork of the official TruffleHog Burp Suite Extension. Scan Burp Suite traffic for 800+ different types of secrets (API keys, passwords, SSH keys, etc) using TruffleHog.
NetSPI/whois-parser
Whois parser for domain whois information parsing in Go(Golang).
NetSPI/zap-api-python
ZAP Python API
NetSPI/zap-extensions
ZAP Add-ons
NetSPI/zaproxy
The ZAP by Checkmarx Core project