absolomb's Stars
Malcrove/SeamlessPass
A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
p0dalirius/LDAPmonitor
Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!
wallarm/jwt-secrets
MattKeeley/Spoofy
Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.
Pennyw0rth/NetExec
The Network Execution Tool
synacktiv/GPOddity
The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
Tw1sm/RITM
Roast in the Middle
login-securite/DonPAPI
Dumping DPAPI credz remotely
ibaiC/MFade
A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure points in Mircrosoft Services.
RedTeamPentesting/resocks
mTLS-Encrypted Back-Connect SOCKS5 Proxy
djackreuter/taskmgr_hooking
Dump LSASS process in Task Manager without triggering Defender.
stealthcopter/deepce
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
blunderbuss-wctf/wacker
A WPA3 dictionary cracker
dirkjanm/PKINITtools
Tools for Kerberos PKINIT and relaying to AD CS
nheiniger/SnaffPoint
A tool for pointesters to find candies in SharePoint
nedlir/OfficerBreaker
OOXML password remover
RedTeamPentesting/pretender
Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
ustayready/SharpHose
Asynchronous Password Spraying Tool in C# for Windows Environments
mitchmoser/SharpShares
Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
Flangvik/SharpCollection
Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.
jonaslejon/malicious-pdf
💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh
RedcentricCyber/Fortigate
Extract Useful info from SSL VPN Directory Traversal Vulnerability (FG-IR-18-384)
cube0x0/KrbRelay
Framework for Kerberos relaying
zyn3rgy/LdapRelayScan
Check for LDAP protections regarding the relay of NTLM authentication
3xpl01tc0d3r/ProcessInjection
This program is designed to demonstrate various process injection techniques
N0MoreSecr3ts/wraith
Uncover forgotten secrets and bring them back to life, haunting security and operations teams.
cube0x0/noPac
CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
hakluke/hakrawler
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
hasherezade/pe-sieve
Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).
MarkoH17/Spray365
Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.