zwned's Stars
rustdesk/rustdesk
An open-source remote desktop application designed for self-hosting, as an alternative to TeamViewer.
j3ssie/osmedeus
A Workflow Engine for Offensive Security
mandiant/speakeasy
Windows kernel and user mode emulation.
swisskyrepo/InternalAllTheThings
Active Directory and Internal Pentest Cheatsheets
dafthack/GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
runZeroInc/sshamble
SSHamble: Unexpected Exposures in SSH
AzureAD/AzureADAssessment
Tooling for assessing an Azure AD tenant state and configuration
subat0mik/Misconfiguration-Manager
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.
vu-ls/Crassus
Xre0uS/MultiDump
MultiDump is a post-exploitation tool for dumping and extracting LSASS memory discreetly.
helviojunior/hookchain
HookChain: A new perspective for Bypassing EDR Solutions
ricardojoserf/TrickDump
Dump lsass using only NTAPIS running 3 programs to create 3 JSON and 1 ZIP file... and generate the Minidump later!
zyn3rgy/smbtakeover
BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
srlabs/Certiception
An ADCS honeypot to catch attackers in your internal network.
lawndoc/Respotter
Respotter is a Responder honeypot! Catch attackers as soon as they spin up Responder in your environment.
Syzik/DockerRegistryGrabber
Enumerate / Dump Docker Registry
badsectorlabs/sccm-http-looter
Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
praetorian-inc/goffloader
A Go implementation of Cobalt Strike style BOF/COFF loaders.
convisolabs/CVE-2024-43044-jenkins
Exploit for the vulnerability CVE-2024-43044 in Jenkins
Offensive-Panda/ProcessInjectionTechniques
This comprehensive process injection series is crafted for cybersecurity enthusiasts, researchers, and professionals who aim to stay at the forefront of the field. It serves as a central repository of knowledge, offering in-depth exploration of various process injection techniques used by adversaries.
synacktiv/SCCMSecrets
SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
CCob/DGPOEdit
Disconnected GPO Editor - A Group Policy Manager launcher to allow editing of domain GPOs from non-domain joined machines
mlcsec/Graphpython
Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
CCob/Shwmae
thesecretclub/ArbitraryDirectoryDeletion
From directory deletion to SYSTEM shell
0xAnuj/Blinks
Blinks is a powerful Burp Suite extension that automates active scanning with Burp Suite Pro and enhances its functionality. With the integration of webhooks, this tool sends real-time updates whenever a new issue is identified, directly to your preferred endpoint. No more waiting for final reports – you get instant, actionable insights! 🛠️
gdbinit/fuckyouilfak
A IDA Pro 9.0 Beta 2 macOS x86 Fix Loader
Unic0rn28/hashcat-rules
skelsec/adiskreader-secretsdump
Extract registry and NTDS secrets from local or remote disk images
leonjza/image-vision
Image text recognition experiments