Pinned Repositories
aad_prt_bof
acCOMplice
Tools for discovery and abuse of COM hijacks
adfspray
ADFS Brute-Force Login Script
ADOKit
Azure DevOps Services Attack Toolkit
AlternativeShellcodeExec
Alternative Shellcode Execution Via Callbacks
mssqlrelay
Tool for MSSQL relay audit and abuse
RedTeamInfra
pwnf's Repositories
pwnf/RedTeamInfra
pwnf/adfspray
ADFS Brute-Force Login Script
pwnf/BobTheSmuggler
"Bob the Smuggler": A tool that leverages HTML Smuggling Attack and allows you to create HTML files with embedded 7z/zip archives. The tool would compress your binary (EXE/DLL) into 7z/zip file format, then XOR encrypt the archive and then hides inside PNG/GIF image file format (Image Polyglots).
pwnf/Deep-Live-Cam
real time face swap and one-click video deepfake with only a single image (uncensored)
pwnf/doppelganger_assistant
Card calculator and Proxmark3 Plugin for writing and/or simulating every card type that Doppelgagner Pro, Stealth, and MFAS support.
pwnf/egp_basicinstall
Installing EvilGoPhish via Curl to https://www.install-evilgophish.net
pwnf/Evilginx3-Phishlets
This repository provides penetration testers and red teams with an extensive collection of dynamic phishing templates designed specifically for use with Evilginx3.
pwnf/family-of-client-ids-research
Research into Undocumented Behavior of Azure AD Refresh Tokens
pwnf/fire-av
Fire-AV is a collection of lists that you can use to block av providers and bad ips
pwnf/GetWebDAVStatus
Determine if the WebClient Service (WebDAV) is running on a remote system
pwnf/git-rotate
Leveraging GitHub Actions to rotate IP addresses during password spraying attacks to bypass IP-Based blocking
pwnf/Graphpython
Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
pwnf/GraphSpy
Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI
pwnf/grimreaper
A improved memory obfuscation primitive using a combination of special and 'normal' Asynchronous Procedural Calls
pwnf/HSC24RedTeamInfra
Slides and Codes used for the workshop Red Team Infrastructure Automation
pwnf/ItsNotASecurityBoundary
pwnf/KDU
Kernel Driver Utility
pwnf/ldeep
In-depth ldap enumeration utility
pwnf/LinkSiren
pwnf/linWinPwn
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
pwnf/Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
pwnf/NativeDump
Dump lsass using only Native APIs by hand-crafting Minidump files (without MinidumpWriteDump!)
pwnf/PacketParser
A cap/pcap packet parser to make life easier when performing stealth/passive reconnaissance.
pwnf/SharpConflux
pwnf/SharpSQL
Simple C# implementation of PowerUpSQL
pwnf/SQL-BOF
Library of BOFs to interact with SQL servers
pwnf/SteppingStones
A Red Team Activity Hub
pwnf/teamstracker
using graph proxy to monitor teams user presence
pwnf/ThievingFox
pwnf/unredacter
Never ever ever use pixelation as a redaction technique