TonyDAtigerr's Stars
cube0x0/KrbRelay
Framework for Kerberos relaying
d3mondev/puredns
Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.
acrono/cve-2024-6387-poc
32-bit PoC for CVE-2024-6387 — mirror of the original 7etsuo/cve-2024-6387-poc
knavesec/Max
Maximizing BloodHound. Max is a good boy.
pwnsauc3/RWXfinder
The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section
p0dalirius/smbclient-ng
smbclient-ng, a fast and user friendly way to interact with SMB shares.
tjnull/pentest-arsenal
A collection of tools that I use in CTF's or for assessments
knownsec/pocsuite3
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
frostbits-security/SIET
Smart Install Exploitation Tool
ustayready/fireprox
AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation
Tw1sm/spraycharles
Low and slow password spraying tool, designed to spray on an interval over a long period of time
Flangvik/TeamFiltration
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
RogueMaster/flipperzero-firmware-wPlugins
RogueMaster Flipper Zero Firmware
blacklanternsecurity/bbot
A recursive internet scanner for hackers.
HavocFramework/Havoc
The Havoc Framework.
matterpreter/DefenderCheck
Identifies the bytes that Microsoft Defender flags on.
netwrix/pingcastle
PingCastle - Get Active Directory Security at 80% in 20% of the time
OmerYa/Invisi-Shell
Hide your Powershell script in plain sight. Bypass all Powershell security features
s0md3v/Decodify
Detect and decode encoded strings, recursively.
CyberSecurityUP/Awesome-Red-Team-Operations
w9w/JSA
Javascript security analysis (JSA) is a program for javascript analysis during web application security assessment.
lc/subjs
Fetches javascript file from a list of URLS or subdomains.
GerbenJavado/LinkFinder
A python script that finds endpoints in JavaScript files
righteousgambit/quiet-riot
Unauthenticated enumeration of AWS, Azure, and GCP Principals
1N3/Sn1per
Attack Surface Management Platform
epinna/tplmap
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
Xacone/BestEdrOfTheMarket
Little user-mode AV/EDR evasion lab for training & learning purposes
google/rekall
Rekall Memory Forensic Framework
google/grr
GRR Rapid Response: remote live forensics for incident response
garrettfoster13/sccmhunter