justinmurphy

Pinned Repositories

awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
00
CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
00
DomainPasswordSpray
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
Language:PowerShell00
dotfiles
.files, including ~/.osx — sensible hacker defaults for OS X
Language:VimL10
faraday
Collaborative Penetration Test and Vulnerability Management Platform
Language:Python00
GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
Language:PowerShell00
MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
Language:PowerShell00
MFASweep
A tool for checking if MFA is enabled on multiple Microsoft Services
Language:PowerShell00
MSOLSpray
A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.
Language:PowerShell00
Test
Tester
10

justinmurphy's Repositories

justinmurphy/dotfiles
.files, including ~/.osx — sensible hacker defaults for OS X
Language:VimL10
justinmurphy/Test
Tester
10
justinmurphy/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
00
justinmurphy/CloudPentestCheatsheets
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
00
justinmurphy/DomainPasswordSpray
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
Language:PowerShell00
justinmurphy/faraday
Collaborative Penetration Test and Vulnerability Management Platform
Language:Python00
justinmurphy/GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
Language:PowerShell00
justinmurphy/MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
Language:PowerShell00
justinmurphy/MFASweep
A tool for checking if MFA is enabled on multiple Microsoft Services
Language:PowerShell00
justinmurphy/MSOLSpray
A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.
Language:PowerShell00
justinmurphy/PowerMeta
PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google, and Bing searches. It then allows for the download of those files from the target domain. After retrieving the files, the metadata associated with them can be analyzed by PowerMeta.
justinmurphy/tfc-workshop