mpgn's Stars
Textualize/rich
Rich is a Python library for rich text and beautiful formatting in the terminal.
beurtschipper/Depix
Recovers passwords from pixelized screenshots
Porchetta-Industries/CrackMapExec
A swiss army knife for pentesting networks
LOLBAS-Project/LOLBAS
Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)
lc/gau
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
S3cur3Th1sSh1t/WinPwn
Automation for internal Windows Penetrationtest / AD-Security
matterpreter/DefenderCheck
Identifies the bytes that Microsoft Defender flags on.
davidprowe/BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
itm4n/PrintSpoofer
Abusing impersonation privileges through the "Printer Bug"
lutfumertceylan/top25-parameter
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
ThePorgs/Exegol
Fully featured and community-driven hacking environment
koutto/pi-pwnbox-rogueap
Homemade Pwnbox :rocket: / Rogue AP :satellite: based on Raspberry Pi — WiFi Hacking Cheatsheets + MindMap :bulb:
Purp1eW0lf/Blue-Team-Notes
You didn't think I'd go and leave the blue team out, right?
Dec0ne/KrbRelayUp
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
EgeBalci/amber
Reflective PE packer.
dirkjanm/krbrelayx
Kerberos unconstrained delegation abuse toolkit
Tylous/ZipExec
A unique technique to execute binaries from a password protected zip
blacklanternsecurity/MANSPIDER
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!
antonioCoco/RunasCs
RunasCs - Csharp and open version of windows builtin runas.exe
leechristensen/SpoolSample
PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as well.
nil0x42/duplicut
Remove duplicates from MASSIVE wordlist, without sorting it (for dictionary-based password cracking)
federicodotta/Java-Deserialization-Scanner
All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
NUL0x4C/AtomPePacker
A Highly capable Pe Packer
pwn1sher/KillDefender
A small POC to make defender useless by removing its token privileges and lowering the token integrity
ly4k/SMBGhost
Scanner for CVE-2020-0796 - SMBv3 RCE
fox-it/adconnectdump
Dump Azure AD Connect credentials for Azure AD and Active Directory
optiv/Dent
A framework for creating COM-based bypasses utilizing vulnerabilities in Microsoft's WDAPT sensors.
blurbdust/ldd2bh
Convert ldapdomaindump to Bloodhound
CMEPW/azure-mindmap
a map for the azure oriented pentests
w1ld3r/SMBGhost_Scanner
Advanced scanner for CVE-2020-0796 - SMBv3 RCE