s1shed

Pinned Repositories

ADAPE-Script
Active Directory Assessment and Privilege Escalation Script
Language:PowerShell00
adfs2
Multi Vagrant environment with Active Directory
Language:PowerShell00
apt2
automated penetration toolkit
Language:Python00
APTSimulator
A toolset to make a system look as if it was the victim of an APT attack
Language:Batchfile00
Arjun
Arjun is a python script for finding hidden GET & POST parameters.
Language:Python0 2 00
atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
Language:PowerShell00

s1shed's Repositories

s1shed/Privesc
Windows batch script that finds misconfiguration issues which can lead to privilege escalation.
Language:Batchfile
s1shed/DockerAttack
Various Tools and Docker Images
Language:Dockerfile
s1shed/H5SC
HTML5 Security Cheatsheet - A collection of HTML5 related XSS attack vectors
Language:JavaScript
s1shed/LinkedInt
LinkedIn Recon Tool
Language:Python
s1shed/Invoke-WMILM
Language:PowerShell
s1shed/RedTips
Red Team Tips as posted by @vysecurity on Twitter
s1shed/lpeworkshop
Windows / Linux Local Privilege Escalation Workshop
s1shed/adfs2
Multi Vagrant environment with Active Directory
Language:PowerShell
s1shed/redshellguide
python script allow red teaming , hackthebox Pwners , OSCP lovers to shorten their time by these useful shells
Language:Python
s1shed/Arjun
Arjun is a python script for finding hidden GET & POST parameters.
Language:Python
s1shed/cuttlefish
dynamic parallelized host enumeration in golang
Language:Go
s1shed/bug-bounty-reference
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
s1shed/pixiewps
An offline Wi-Fi Protected Setup brute-force utility
Language:C
s1shed/burp-suite-http-proxy-history-converter
Python script that converts Burp Suite HTTP proxy history files to CSV or HTML
Language:Python
s1shed/Exchange-AD-Privesc
Exchange privilege escalations to Active Directory
Language:PowerShell
s1shed/dostoevsky-pentest-notes
Notes for taking the OSCP in 2097. Read in book form on GitBook
s1shed/Invoke-Obfuscation
PowerShell Obfuscator
Language:PowerShell
s1shed/DPAT
Domain Password Audit Tool for Pentesters
Language:Python
s1shed/FiercePhish
FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of emails, and much more.
Language:PHP
s1shed/RandomPS-Scripts
PowerShell Scripts focused on Post-Exploitation Capabilities
Language:PowerShell
s1shed/autoDANE
Auto Domain Admin and Network Exploitation.
Language:Python
s1shed/lois_lane
Lois Lane is a tool to create reports out of JSON data and Jinja templates.
Language:Python
s1shed/mimikittenz
A post-exploitation powershell tool for extracting juicy info from memory.
Language:PowerShell
s1shed/borg
Deduplicating archiver with compression and authenticated encryption.
Language:Python
s1shed/borgmatic
A simple wrapper script for the Borg backup software that creates and prunes backups
Language:Python
s1shed/HostRecon
This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance phase. It gathers information about the local system, users, and domain information. It does not use any 'net', 'ipconfig', 'whoami', 'netstat', or other system commands to help avoid detection.
Language:PowerShell
s1shed/dnuos
s1shed/searchscan
Search Nmap and Metasploit scanning scripts.
Language:Go
s1shed/PathToMastery
Language:Python
s1shed/redteam-plan
Issues to consider when planning a red team exercise.