Pinned Repositories
ADLabsReview
Active Directory Labs/exams Review
ADModule
Microsoft signed ActiveDirectory PowerShell module
AVIator
Antivirus evasion project
Empire
Empire is a PowerShell and Python 3.x post-exploitation framework.
envizon
network visualization & vulnerability management/reporting
libzmap
zmap lib for python
PSFPT
Scripts for powershell for pentesters exam
qualcomm_android_monitor_mode
Qualcomm QCACLD WiFi monitor mode for Android
ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
spoonmap
s3m73x's Repositories
s3m73x/envizon
network visualization & vulnerability management/reporting
s3m73x/ScareCrow
ScareCrow - Payload creation framework designed around EDR bypass.
s3m73x/spoonmap
s3m73x/awesome-cve-poc
✍️ A curated list of CVE PoCs.
s3m73x/breach-parse
A tool for parsing breached passwords
s3m73x/build_a_phish
Ansible playbook to deploy a phishing engagement
s3m73x/Creds
Some usefull Scripts and Executables for Pentest & Forensics
s3m73x/CVE-2021-26855
s3m73x/DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
s3m73x/DefenderCheck
Identifies the bytes that Microsoft Defender flags on.
s3m73x/DetectionLab
Automate the creation of a lab environment complete with security tooling and logging best practices
s3m73x/egressbuster
Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.
s3m73x/emba
emba - Embedded Analyzer
s3m73x/exploits
s3m73x/hashcat-utils
Small utilities that are useful in advanced password cracking
s3m73x/hcxdumptool
Small tool to capture packets from wlan devices.
s3m73x/kismon
A GUI client for kismet
s3m73x/kubernetes-goat
Kubernetes Goat is "Vulnerable by Design" Kubernetes Cluster. Designed to be an intentionally vulnerable cluster environment to learn and practice Kubernetes security.
s3m73x/mdk4
MDK4
s3m73x/Nessus2Word
s3m73x/pen_300_osep_prep
Preparation guide for Offensive Security's PEN-300 course and OSEP certification exam
s3m73x/Penetration-Testing-Tools
A collection of more than 140+ tools, scripts, cheatsheets and other loots that I have developed over years for Red Teaming/Pentesting/IT Security audits purposes. Most of them came handy on at least one of my real-world engagements.
s3m73x/PoshC2
A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
s3m73x/PowerSharpPack
s3m73x/ps4jb750-755
s3m73x/ssh-mitm
ssh mitm server for security audits supporting public key authentication, session hijacking and file manipulation
s3m73x/traitor
Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins :arrow_up: :skull_and_crossbones:
s3m73x/wifite2
Rewrite of the popular wireless network auditor, "wifite"
s3m73x/CredMaster
Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling
s3m73x/juicy-potato
A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.