ruuand's Stars
projectdiscovery/nuclei
Fast and customizable vulnerability scanner based on simple YAML based DSL.
tennc/webshell
This is a webshell open source project
bitsadmin/wesng
Windows Exploit Suggester - Next Generation
mantvydasb/RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
1N3/IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
iamadamdev/bypass-paywalls-firefox
Bypass Paywalls for Firefox
ambionics/phpggc
PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
Orange-Cyberdefense/arsenal
Arsenal is just a quick inventory and launcher for hacking programs
itm4n/PrivescCheck
Privilege Escalation Enumeration Script for Windows
rewardone/OSCPRepo
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
vletoux/pingcastle
PingCastle - Get Active Directory Security at 80% in 20% of the time
davidprowe/BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
koutto/pi-pwnbox-rogueap
Homemade Pwnbox :rocket: / Rogue AP :satellite: based on Raspberry Pi — WiFi Hacking Cheatsheets + MindMap :bulb:
cfalta/MicrosoftWontFixList
A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))
login-securite/DonPAPI
Dumping DPAPI credz remotely
GhostPack/PSPKIAudit
PowerShell toolkit for AD CS auditing based on the PSPKI toolkit.
praetorian-inc/PortBender
TCP Port Redirection Utility
JamesCooteUK/SharpSphere
.NET Project for Attacking vCenter
Pepitoh/VBad
VBA Obfuscation Tools combined with an MS office document generator
HunnicCyber/SharpSniper
Find specific users in active directory via their username and logon IP address
many-passwords/many-passwords
Default credentials list. 🐱💻 Leave a star if you like this project! (that motivates me)⭐️
NetSPI/PowerShell
NetSPI PowerShell Scripts
mtth-bfft/adeleg
Active Directory delegation management tool
NtRaiseHardError/Antimalware-Research
Research on Anti-malware and other related security solutions
Raikia/SMBCrunch
3 tools that work together to simplify reconaissance of Windows File Shares
MichaelStott/CRLF-Injection-Scanner
Command line tool for testing CRLF injection on a list of domains.
sensepost/assless-chaps
Crack MSCHAPv2 challenge/responses quickly using a database of NT hashes
daem0nc0re/Abusing_Weak_ACL_on_Certificate_Templates
Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
RemiEscourrou/Invoke-Leghorn
Leghorn code for PKI abuse
AlteredSecurity/RBCD
Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.