absolomb

absolomb's Stars

• Malcrove/SeamlessPass

  A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO

  Language:Python848

• p0dalirius/LDAPmonitor

  Monitor creation, deletion and changes to LDAP objects live during your pentest or system administration!

  Language:C#83171

• wallarm/jwt-secrets

  708165

• MattKeeley/Spoofy

  Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.

  Language:Python61757

• Pennyw0rth/NetExec

  The Network Execution Tool

  Language:Python2.9k312

• synacktiv/GPOddity

  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).

  Language:Python26020

• Tw1sm/RITM

  Roast in the Middle

  Language:Python26527

• login-securite/DonPAPI

  Dumping DPAPI credz remotely

  Language:Python947112

• ibaiC/MFade

  A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure points in Mircrosoft Services.

  Language:Python293

• RedTeamPentesting/resocks

  mTLS-Encrypted Back-Connect SOCKS5 Proxy

  Language:Go38626

• djackreuter/taskmgr_hooking

  Dump LSASS process in Task Manager without triggering Defender.

  Language:C++181

• stealthcopter/deepce

  Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)

  Language:Shell1.2k104

• blunderbuss-wctf/wacker

  A WPA3 dictionary cracker

  Language:C28556

• dirkjanm/PKINITtools

  Tools for Kerberos PKINIT and relaying to AD CS

  Language:Python61476

• nheiniger/SnaffPoint

  A tool for pointesters to find candies in SharePoint

  Language:C#23121

• nedlir/OfficerBreaker

  OOXML password remover

  Language:Java59131

• RedTeamPentesting/pretender

  Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.

  Language:Go95366

• ustayready/SharpHose

  Asynchronous Password Spraying Tool in C# for Windows Environments

  Language:C#30761

• mitchmoser/SharpShares

  Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain

  Language:C#32047

• Flangvik/SharpCollection

  Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

  2.3k330

• jonaslejon/malicious-pdf

  💀 Generate a bunch of malicious pdf files with phone-home functionality. Can be used with Burp Collaborator or Interact.sh

  Language:Python2.8k379

• RedcentricCyber/Fortigate

  Extract Useful info from SSL VPN Directory Traversal Vulnerability (FG-IR-18-384)

  Language:Python7030

• cube0x0/KrbRelay

  Framework for Kerberos relaying

  Language:C#850120

• zyn3rgy/LdapRelayScan

  Check for LDAP protections regarding the relay of NTLM authentication

  Language:Python45467

• 3xpl01tc0d3r/ProcessInjection

  This program is designed to demonstrate various process injection techniques

  Language:C#1.1k180

• N0MoreSecr3ts/wraith

  Uncover forgotten secrets and bring them back to life, haunting security and operations teams.

  Language:Go20642

• cube0x0/noPac

  CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.

  Language:C#1.3k319

• hakluke/hakrawler

  Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

  Language:Go4.4k490

• hasherezade/pe-sieve

  Scans a given process. Recognizes and dumps a variety of potentially malicious implants (replaced/injected PEs, shellcodes, hooks, in-memory patches).

  Language:C++3.1k425

• MarkoH17/Spray365

  Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.

  Language:Python33957