SensePost

Orange Cyberdefense's Ethical Hacking Team

The World

Pinned Repositories

DET
(extensible) Data Exfiltration Toolkit (DET)
Language:Python827 67 11191
godoh
🕳 godoh - A DNS-over-HTTPS C2
Language:Go762 31 8123
gowitness
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
Language:Go3.5k 50 190372
hostapd-mana
SensePost's modified hostapd for wifi attacks.
Language:C560 48 44128
kwetza
Python script to inject existing Android applications with a Meterpreter payload.
Language:Smali642 63 47238
mallet
Mallet is an intercepting proxy for arbitrary protocols
Language:Java266 21 1844
mana
*DEPRECATED* mana toolkit for wifi rogue AP attacks and MitM
Language:HTML1.1k 138 94275
objection
📱 objection - runtime mobile exploration
Language:Python7.8k 158 540872
reGeorg
The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
Language:Python3k 122 20822
ruler
A tool to abuse Exchange services
Language:Go2.2k 100 100362

SensePost's Repositories

sensepost/objection
📱 objection - runtime mobile exploration
Language:Python7.8k 158 540872
sensepost/gowitness
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
Language:Go3.5k 50 190372
sensepost/ruler
A tool to abuse Exchange services
Language:Go2.2k 100 100362
sensepost/godoh
🕳 godoh - A DNS-over-HTTPS C2
Language:Go762 31 8123
sensepost/kwetza
Python script to inject existing Android applications with a Meterpreter payload.
Language:Smali642 63 47238
sensepost/hostapd-mana
SensePost's modified hostapd for wifi attacks.
Language:C560 48 44128
sensepost/Frack
Frack - Keep and Maintain your breach data
Language:Python339 9 128
sensepost/wiresocks
A sock, with a wire, so you can tunnel all you desire.
Language:Shell280 12 530
sensepost/mallet
Mallet is an intercepting proxy for arbitrary protocols
Language:Java266 21 1844
sensepost/berate_ap
Script for orchestrating mana rogue WiFi Access Points.
Language:Shell236 15 334
sensepost/UserEnum
Domain user enumeration tool
Language:Python215 8 543
sensepost/wpa_sycophant
Evil client portion of EAP relay attack
Language:C196 13 535
sensepost/assless-chaps
Crack MSCHAPv2 challenge/responses quickly using a database of NT hashes
Language:Python129 12 119
sensepost/go-out
☄️ go-out - A Golang egress buster.
Language:Go124 10 513
sensepost/susinternals
psexecsvc - a python implementation of PSExec's native service implementation
Language:Python12112
sensepost/mydumbedr
Language:C112 4 017
sensepost/mail-in-the-middle
Language:Python105 4 09
sensepost/apostille
Language:Java73 8 321
sensepost/hash-cracker
Script to perform some hashcracking logic automagically
Language:C67 8 314
sensepost/punch-q
👊 A small utility to play with IBM MQ
Language:Python64 5 513
sensepost/thumbscr-ews
Exchangelib wrapper for pentesting
Language:Python59 8 58
sensepost/steampipe-plugin-projectdiscovery
A steampipe plugin to query projectdiscovery.io tools.
Language:Go26 3 11
sensepost/cipherchecks
visually see issues with supported cipher suites
Language:Python15 8 47
sensepost/dresscode
Language:Python10 4 02
sensepost/berate_radius
Alpine hostapd-mana based RADIUS server
Language:Shell9 3 01
sensepost/hash-cracker-apple-silicon
Script to perform some hashcracking logic automagically
Language:Python6 3 00
sensepost/InvokeADCheck
InvokeADCheck is a PowerShell module designed to evaluate the security of Active Directory environments.
Language:PowerShell62
sensepost/file-read-experiments
A few short scripts to look at the performance of various file read strategies.
Language:Rust4 3 11
sensepost/arbitrary-object-instantiation
A PHP, Arbitrary Object Instantiation Lab
Language:PHP1 2 01
sensepost/beacon-pipe-frame-proxy
A toy, C# Cobalt Strike Beacon TCP to Named Pipe Frame Proxy
Language:C#1 3 0