Pinned Repositories
ASRenum-BOF
Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations
clovery
Cloud Discovery - brute force public AWS, GCP, Alibaba, and Azure cloud services
FormThief
Spoofing desktop login applications with WinForms and WPF
Graphpython
Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
headi
Customisable and automated HTTP header injection
huntsman
Email enumerator, username generator, and context validator for hunter.io, snov.io, and skrapp.io
proctools
Small toolkit for extracting information and dumping sensitive strings from Windows processes
SharpGraphView
Microsoft Graph API post-exploitation toolkit
SharpSQL
Simple C# implementation of PowerUpSQL
SigFinder
Identify binaries with Authenticode digital signatures signed to an internal CA/domain
mlcsec's Repositories
mlcsec/headi
Customisable and automated HTTP header injection
mlcsec/FormThief
Spoofing desktop login applications with WinForms and WPF
mlcsec/ASRenum-BOF
Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations
mlcsec/Graphpython
Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
mlcsec/proctools
Small toolkit for extracting information and dumping sensitive strings from Windows processes
mlcsec/SharpGraphView
Microsoft Graph API post-exploitation toolkit
mlcsec/SharpSQL
Simple C# implementation of PowerUpSQL
mlcsec/huntsman
Email enumerator, username generator, and context validator for hunter.io, snov.io, and skrapp.io
mlcsec/SigFinder
Identify binaries with Authenticode digital signatures signed to an internal CA/domain
mlcsec/clovery
Cloud Discovery - brute force public AWS, GCP, Alibaba, and Azure cloud services
mlcsec/Awesome-Advanced-Windows-Exploitation-References
List of Awesome Advanced Windows Exploitation References