badbiddy's Stars
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
streaak/keyhacks
Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.
dwisiswant0/apkleaks
Scanning APK file for URIs, endpoints & secrets.
blacklanternsecurity/bbot
A recursive internet scanner for hackers.
Pennyw0rth/NetExec
The Network Execution Tool
grimlockx/ADCSKiller
An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
FuzzySecurity/StandIn
StandIn is a small .NET35/45 AD post-exploitation toolkit
garrettfoster13/sccmhunter
evilmog/ntlmv1-multi
NTLMv1 Multitool
v4d1/Dome
Dome - Subdomain Enumeration Tool. Fast and reliable python script that makes active and/or passive scan to obtain subdomains and search for open ports.
L4bF0x/PhishingPretexts
A library of pretexts to use on offensive phishing engagements.
xforcered/StandIn
StandIn is a small .NET35/45 AD post-exploitation toolkit
byt3bl33d3r/AnsiblePlaybooks
A collection of Ansible Playbooks that configure Kali to use Fish & install a number of tools
pretext-project/pretext-project.github.io
Open-Source Collection of Social Engineering Pretexts
BrianHepler/MMM-SantaTracker
A Santa Tracking module for the Magic Mirror^2 Framework
mattgrandy/CredNinja
A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale via SMB, plus now with a user hunter