michiiii's Stars
guyrleech/Microsoft
Scripts and tools for use with Microsoft products/technologies
t94j0/satellite
easy-to-use payload hosting
magoo/redteam-plan
Issues to consider when planning a red team exercise.
danielmiessler/fabric
fabric is an open-source framework for augmenting humans using AI. It provides a modular framework for solving specific problems using a crowdsourced set of AI prompts that can be used anywhere.
nheiniger/SnaffPoint
A tool for pointesters to find candies in SharePoint
CyberCX-STA/Efflanrs
Efflanrs - GUI for Snaffler Output
A-poc/BlueTeam-Tools
Tools and Techniques for Blue Team / Incident Response
bouj33boy/Domain-Persistence-Detection-Triage-and-Recovery-SO-CON-2024
Resources Links for the Research Based on Josh Prager and Nico Shyne's
TrimarcJake/Locksmith
A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.
techspence/ScriptSentry
ScriptSentry finds misconfigured and dangerous logon scripts.
CICADA8-Research/RemoteKrbRelay
Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
synacktiv/Prox-Ez
r0oth3x49/ghauri
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
mlcsec/SigFinder
Identify binaries with Authenticode digital signatures signed to an internal CA/domain
cgosec/FWParser
Python command line tool for parsing raw firewall logs to a simple CSV or JSON representation
cgosec/Blauhaunt
A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you come from where did you go) in Security Incidents and Threat Hunts
florylsk/ExecIT
Execute shellcode files with rundll32
DataDog/stratus-red-team
:cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
YOLOP0wn/POSTDump
franc-pentest/ldeep
In-depth ldap enumeration utility
corkami/pics
File formats dissections and more...
Accenture/Spartacus
Spartacus DLL/COM Hijacking Toolkit
nullsection/DLL-Spoofer
POC for a DLL spoofer to determine DLL Hijacking
TheCyb3rAlpha/BobTheSmuggler
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
synacktiv/Mindmaps
Azure mindmap for penetration tests
blackarrowsec/pivotnacci
A tool to make socks connections through HTTP agents
nicocha30/ligolo-ng
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
RedTeamPentesting/resocks
mTLS-Encrypted Back-Connect SOCKS5 Proxy
l4rm4nd/Reconizer
Python3 script to resolve hostnames to IP addresses and query Shodan's free InternetDB for ports and CVEs as well as ipinfo.com for IP details
secureworks/whiskeysamlandfriends
GoldenSAML Attack Libraries and Framework