fitzpr's Stars
github/codeql
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
S1ckB0y1337/Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
itm4n/PrivescCheck
Privilege Escalation Enumeration Script for Windows
bats3c/shad0w
A post exploitation framework designed to operate covertly on heavily monitored environments
NetSPI/MicroBurst
A collection of scripts for assessing Microsoft Azure security
Aorimn/dislocker
FUSE driver to read/write Windows' BitLocker-ed volumes under Linux / Mac OSX
SpecterOps/at-ps
Adversary Tactics - PowerShell Training
S3cur3Th1sSh1t/PowerSharpPack
strandjs/IntroLabs
These are the labs for my Intro class. Yes, this is public. Yes, this is intentional.
rootsecdev/Azure-Red-Team
Azure Security Resources and Notes
dafthack/MFASweep
A tool for checking if MFA is enabled on multiple Microsoft Services
Gerenios/AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
stealthcopter/deepce
Docker Enumeration, Escalation of Privileges and Container Escapes (DEEPCE)
bats3c/ADCSPwn
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
hausec/Bloodhound-Custom-Queries
Custom Query list for the Bloodhound GUI based off my cheatsheet
BishopFox/badPods
A collection of manifests that will create pods with elevated privileges.
nccgroup/azucar
Security auditing tool for Azure environments
JamesCooteUK/SharpSphere
.NET Project for Attacking vCenter
Rolix44/Kubestroyer
Kubernetes exploitation tool
WithSecureLabs/bitlocker-spi-toolkit
Tools for decoding TPM SPI transaction and extracting the BitLocker key from them.
six2dez/dorks_hunter
Simple Google Dorks search tool
geekshiv/Smart-Contract-Hacking
List of resources to learn smart contract hacking.
rvazarkar/GMSAPasswordReader
tintinweb/smart-contract-inspector
the magic X-ray machine for solidity smart contracts
mandiant/heyserial
Programmatically create hunting rules for deserialization exploitation with multiple keywords, gadget chains, object types, encodings, and rule types
mattrotlevi/lava
Microsoft Azure Exploitation Framework
walmartlabs/nightcall
Automated Enumeration Script for Pentesting
MrToph/damn-vulnerable-defi
improsec/2Cloudz
maartengoet/presentations
Presentations