XSGEG9

XSGEG9's Stars

• ElliotKillick/LdrLockLiberator

  For when DLLMain is the only way

  Language:C35065

• lanjelot/patator

  Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.

  Language:Python3.6k787

• 0xmitsurugi/gimmecredz

  You're a #pentester and you totally pwn that linux box, congrats! Now what? You can launch gimmecredz.sh which will try to extract all passwords from known locations.

  Language:Shell16826

• SecWiki/windows-kernel-exploits

  windows-kernel-exploits Windows平台提权漏洞集合

  Language:C8.1k2.8k

• NullArray/RootHelper

  A Bash script that downloads and unzips scripts that will aid with privilege escalation on a Linux system.

  Language:Shell484199

• Bo0oM/fuzz.txt

  Potentially dangerous files

  2.9k487

• qazbnm456/awesome-web-security

  🐶 A curated list of Web Security materials and resources.

  11.4k1.7k

• s0md3v/Breacher

  An advanced multithreaded admin panel finder written in python.

  Language:Python744247

• trimstray/the-book-of-secret-knowledge

  A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

  148k9.6k

• mubix/post-exploitation

  Post Exploitation Collection

  Language:C1.6k359

• dirkjanm/PrivExchange

  Exchange your privileges for Domain Admin privs by abusing Exchange

  Language:Python976172

• BastilleResearch/mousejack

  MouseJack device discovery and research tools

  1.3k254

• ambionics/phpggc

  PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

  Language:PHP3.2k501

• insecurityofthings/jackit

  JackIt - Exploit Code for Mousejack

  Language:Python810145

• dirkjanm/krbrelayx

  Kerberos unconstrained delegation abuse toolkit

  Language:Python1.1k170

• dionach/PassHunt

  Search drives for documents containing passwords

  Language:Python6233

• NetSPI/MicroBurst

  A collection of scripts for assessing Microsoft Azure security

  Language:PowerShell2k314

• quickbreach/ExchangeRelayX

  An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.

  Language:JavaScript30160

• initstring/dirty_sock

  Linux privilege escalation exploit via snapd (CVE-2019-7304)

  Language:Python662148

• ANSSI-FR/ADTimeline

  Timeline of Active Directory changes with replication metadata

  Language:PowerShell47357

• Ridter/Exchange2domain

  CVE-2018-8581

  Language:Python37078

• ryhanson/phishery

  An SSL Enabled Basic Auth Credential Harvester with a Word Document Template URL Injector

  Language:Go977204

• S3cur3Th1sSh1t/audit_scripts

  Scripts to gather system configuration information for offline/remote auditing

  Language:Batchfile41

• S3cur3Th1sSh1t/AD-Attack-Defense

  Active Directory Security For Red & Blue Team

  92

• S3cur3Th1sSh1t/Creds

  Some usefull Scripts and Executables for Pentest & Forensics

  Language:PowerShell1.1k239

• S3cur3Th1sSh1t/WinPwn

  Automation for internal Windows Penetrationtest / AD-Security

  Language:PowerShell3.3k518

• dafthack/MailSniper

  MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.

  Language:PowerShell2.9k570

• enaqx/awesome-pentest

  A collection of awesome penetration testing resources, tools and other shiny things

  21.9k4.5k

• orlyjamie/mimikittenz

  A post-exploitation powershell tool for extracting juicy info from memory.

  Language:PowerShell1.8k333

• SpiderLabs/Responder

  Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

  Language:Python4.5k1.7k