s1gh's Stars
redeye-framework/Redeye
Redeye is a tool intended to help you manage your data during a pentest operation
HernanRodriguez1/MimikatzFUD
Orange-Cyberdefense/GOAD
game of active directory
restic/restic
Fast, secure, efficient backup program
topotam/PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
ignis-sec/Pwdb-Public
A collection of all the data i could extract from 1 billion leaked credentials from internet.
peass-ng/PEASS-ng
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
mnemonic-no/grafeo
Open platform for modelling, collection and exchange of knowledge
sagishahar-zz/lpeworkshop
Windows / Linux Local Privilege Escalation Workshop
freddiebarrsmith/Buffer-Overflow-Exploit-Development-Practice
Good For OSCP Training
AlessandroZ/LaZagne
Credentials recovery project
Arvanaghi/SessionGopher
SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, SuperPuTTY, FileZilla, and Microsoft Remote Desktop. It can be run remotely or locally.
SpiderLabs/Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
Boerderij/Varken
Standalone application to aggregate data from the Plex ecosystem into InfluxDB using Grafana as a frontend
infosecn1nja/AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
s0md3v/XSStrike
Most advanced XSS scanner.
commixproject/commix
Automated All-in-One OS Command Injection Exploitation Tool.
nnamon/linux-exploitation-course
A Course on Intermediate Level Linux Exploitation
almandin/fuxploider
File upload vulnerability scanner and exploitation tool.
adon90/pentest_compilation
Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios
dylanaraps/fff
📁 A simple file manager written in bash.
trustedsec/unicorn
Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.
samratashok/nishang
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
Hackplayers/hackthebox-writeups
Writeups for HacktheBox 'boot2root' machines
rewardone/OSCPRepo
A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' CherryTree. Reconscan Py2 and Py3. Custom ISO building.
OlivierLaflamme/Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
codingo/Reconnoitre
A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, along with writing out recommendations for further testing.
ihack4falafel/OSCP
Collection of things made during my OSCP journey
hausec/ADAPE-Script
Active Directory Assessment and Privilege Escalation Script
trimstray/test-your-sysadmin-skills
A collection of Linux Sysadmin Test Questions and Answers. Test your knowledge and skills in different fields with these Q/A.