sweetpastabox

Penetration Tester / Red Teamer

Pinned Repositories

aad-sso-enum-brute-spray
POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln
Language:PowerShell00
AD_Miner
AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses
Language:JavaScript00
AI-KungFU
Machine Learning for Cybersecurity
Language:Jupyter Notebook00
AI_for_finance
Using Machine learning models for crypto performance analysis
0 1 00
ail-framework
AIL framework - Analysis Information Leak framework
Language:Python00
android_hacking
How to hack and android device and forge/upload a persistency script
00
AnomalyDetection
⏰ Anomaly Detection with R (separately maintained fork of Twitter's AnomalyDetection 📦)
Language:R00
asap
Autonomous Security Analysis and Penetration Testing
Language:OpenEdge ABL00
Responder-Windows
Responder Windows Version Beta
Language:Python10

sweetpastabox's Repositories

sweetpastabox/Responder-Windows
Responder Windows Version Beta
Language:Python10
sweetpastabox/AD_Miner
AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses
Language:JavaScript00
sweetpastabox/BITB
Browser In The Browser (BITB) Templates
Language:JavaScript00
sweetpastabox/BloodHound
Six Degrees of Domain Admin
sweetpastabox/chrome-tab-carousel
sweetpastabox/Coercer
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 9 methods.
sweetpastabox/CompiledSharpTools
sweetpastabox/CVE-2022-22963
CVE-2022-22963 PoC
sweetpastabox/CVE-2023-36874
sweetpastabox/Cyber-threat-forecast
sweetpastabox/DashScan
Vicarius-like'ish ?
Language:Python
sweetpastabox/FemtoCTF2021
Language:Go
sweetpastabox/GoTcha
sweetpastabox/inceptor
Template-Driven AV/EDR Evasion Framework
sweetpastabox/JS-Scan
Language:JavaScript
sweetpastabox/juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
sweetpastabox/kdigger
Kubernetes focused container assessment and context discovery tool for penetration testing
sweetpastabox/lnkbomb
Malicious shortcut generator for collecting NTLM hashes from insecure file shares.
sweetpastabox/lynis
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
sweetpastabox/ObfPowershell
Language:PowerShell
sweetpastabox/ProxyNotShell-PoC
sweetpastabox/PTART
sweetpastabox/Redscan
sweetpastabox/rogue-jndi
A malicious LDAP server for JNDI injection attacks
sweetpastabox/SharpHound
sweetpastabox/SliverImplants
sweetpastabox/spring4shell-scanner
Scan systems and docker images for potential spring4shell vulnerabilities. Will detect in-depth (layered archives jar/zip/tar/war and scans for vulnerable Spring4shell versions. Binaries for Windows, Linux and OsX, but can be build on each platform supported by supported Golang.
sweetpastabox/UACME
Defeating Windows User Account Control
sweetpastabox/USB-Rubber-Ducky
sweetpastabox/x-frame
Language:JavaScript