jopraveen's Stars
DERE-ad2001/Frida-Labs
The repo contains a series of challenges for learning Frida for Android Exploitation.
LeonVQZ/OSCP-Enum-Handbook
This is my personal Enumeration Handbook that I used for the OSCP 2023
LordGuccif3r/Signer
Tool to sign executables
rasta-mouse/ThreatCheck
Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
GhostManager/Ghostwriter
The SpecterOps project management and reporting engine
NH-RED-TEAM/RustHound
Active Directory data collector for BloodHound written in Rust. 🦀
Ahmed-AL-Maghraby/SIEM-Cheat-Sheet
SIEM Cheat Sheet
davidprowe/BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
hfiref0x/UACME
Defeating Windows User Account Control
daem0nc0re/PrivFu
Kernel mode WinDbg extension and PoCs for token privilege investigation.
grimlockx/ADCSKiller
An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
FSecureLABS/SharpGPOAbuse
SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GPO) in order to compromise the objects that are controlled by that GPO.
PowerShellMafia/PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
dirkjanm/adidnsdump
Active Directory Integrated DNS dumping by any authenticated user
gdedrouas/Exchange-AD-Privesc
Exchange privilege escalations to Active Directory
NetSPI/PowerUpSQL
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
SnaffCon/Snaffler
a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
xct/hashgrab
generate payloads that force authentication against an attacker machine
GhostPack/Rubeus
Trying to tame the three-headed dog.
leoloobeek/LAPSToolkit
Tool to audit and attack LAPS environments
dafthack/DomainPasswordSpray
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
initstring/linkedin2username
OSINT Tool: Generate username lists for companies on LinkedIn
nickvourd/Windows-Local-Privilege-Escalation-Cookbook
Windows Local Privilege Escalation Cookbook
binsync/binsync
A reversing plugin for cross-decompiler collaboration, built on git.
r3motecontrol/Ghostpack-CompiledBinaries
Compiled Binaries for Ghostpack (.NET v4.0)
ly4k/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
cobbr/Covenant
Covenant is a collaborative .NET C2 framework for red teamers.
pwncollege/example-dojo
Example of how you can create your own dojo
ptr-yudai/pawnyable
PAWNYABLE!
RedTeamPentesting/resocks
mTLS-Encrypted Back-Connect SOCKS5 Proxy