Pinned Repositories
BloodHound-Custom-Queries
Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets
bloodhound-scripts
Bloodhound helper scripts
Conference-Talks
Compilation of Conference talks and details
CredMaster
Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling
DPS
Distributed Port Scanner (Damage-Per-Second)
EyeWitnessTheFitness
Exactly what it sounds like, which is something rad
Max
Maximizing BloodHound. Max is a good boy.
o365fedenum
Federated Office365 user enumeration based on correlated response trend analysis
knavesec's Repositories
knavesec/CredMaster
Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling
knavesec/Max
Maximizing BloodHound. Max is a good boy.
knavesec/o365fedenum
Federated Office365 user enumeration based on correlated response trend analysis
knavesec/EyeWitnessTheFitness
Exactly what it sounds like, which is something rad
knavesec/BloodHound-Custom-Queries
Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets
knavesec/bloodhound-scripts
Bloodhound helper scripts
knavesec/Reverse-DNS-Info
knavesec/Conference-Talks
Compilation of Conference talks and details
knavesec/DPS
Distributed Port Scanner (Damage-Per-Second)
knavesec/FireHaus
Collection of tools refactored to add FireProx support to bypass rate-limiting
knavesec/anomaly_lab
Anomaly repo for KUISC Lab session (CTF)
knavesec/knavesec
$> whoami
knavesec/red-team-infrastructure-example
A basic Terraform configuration for provisioning simple red team infrastructure in DigitalOcean
knavesec/awesome-bloodhound
A curated list of awesome BloodhoundAD resources
knavesec/check_mdi
Python script to enumerate valid Microsoft 365 domains, retrieve tenant name, and check for an MDI instance.
knavesec/confused
Tool to check for dependency confusion vulnerabilities in multiple package management systems
knavesec/ctfr
Abusing Certificate Transparency logs for getting HTTPS websites subdomains.
knavesec/gato
GitHub Actions Pipeline Enumeration and Attack Tool
knavesec/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
knavesec/axiom
The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!
knavesec/bbot
OSINT automation for hackers.
knavesec/CredKing
Password spraying using AWS Lambda for IP rotation
knavesec/direct_send_check
checks for MS direct send availability
knavesec/ffl-playoffs
knavesec/gh_workflow_compromise
Repo for testing automated workflow compromise
knavesec/gophish
Open-Source Phishing Toolkit
knavesec/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
knavesec/ROADtools
A collection of Azure AD tools for offensive and defensive security purposes
knavesec/SeeYouCM-Thief
knavesec/wappalyzer
Identify technology on websites.