Pinned Repositories
-Windows-Cheatsheet-Dump
CheatSheet
AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
ADRecon
ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.
autorelayx
Automatically perform advanced NTLM hash relay attacks
Awesome-WAF
🔥 Web-application firewalls (WAFs) from security standpoint.
Bloodhound-CustomQueries
Custom Queries - Brought Up to BH4.1 syntax
BruteShark
Network Analysis Tool
Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
TheCr3g's Repositories
TheCr3g/-Windows-Cheatsheet-Dump
CheatSheet
TheCr3g/AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
TheCr3g/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
TheCr3g/AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
TheCr3g/ADRecon
ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.
TheCr3g/autorelayx
Automatically perform advanced NTLM hash relay attacks
TheCr3g/Awesome-WAF
🔥 Web-application firewalls (WAFs) from security standpoint.
TheCr3g/Bloodhound-CustomQueries
Custom Queries - Brought Up to BH4.1 syntax
TheCr3g/BruteShark
Network Analysis Tool
TheCr3g/Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
TheCr3g/dot
The Deepfake Offensive Toolkit
TheCr3g/ElmoFire
Yet another obfuscated payload generator written in Rust!
TheCr3g/Kaonashi
Wordlist, rules and masks from Kaonashi project (RootedCON 2019)
TheCr3g/PCredz
This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.
TheCr3g/PowerShell-AD-Recon
PowerShell Scripts I find useful
TheCr3g/pretender
Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
TheCr3g/ROADtools
The Azure AD exploration framework.
TheCr3g/Security-Research
Exploits written by the Rhino Security Labs team
TheCr3g/Seth
Perform a MitM attack and extract clear text credentials from RDP connections
TheCr3g/snmp
SNMP data gather scripts
TheCr3g/updog
Updog is a replacement for Python's SimpleHTTPServer. It allows uploading and downloading via HTTP/S, can set ad hoc SSL certificates and use http basic auth.
TheCr3g/wifi-penetration-testing-cheat-sheet
Work in progress...
TheCr3g/Wynis
Audit Windows Security with best Practice