Stars
A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation
Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling
A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows.
CVE-2021-1732 Microsoft Windows 10 本地提权漏 研究及Poc/Exploit开发
Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory
a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics an…
Covert .nessus into a tabulated data in word document.
Convert Nessus raw CSV's to MS WORD Documents.
Command line interface to dump LSASS memory to disk via SilentProcessExit
The challenge toolbox is a small component which allows you to create, run and check new challenges locally.
Framework for Making Environmental Keyed Payloads (NO LONGER SUPPORTED)
Provisioning systems made easy: A collection of Ansible, Packer, Vagrant and Virtualbox configuration and preseed files.
A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.
defeating the latest version of ReCaptcha with 91% accuracy
Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.
The SpecterOps project management and reporting engine
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
robsware / AutoRecon
Forked from Tib3rius/AutoReconAutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.
A private botnet using multiple cloud environments for pentesters and red teamers. - Built by the community during a hackathon at the WWHF 2018 security conference
A simple python packer to easily bypass Windows Defender
Identifies the bytes that Microsoft Defender flags on.
TCP tunneling over HTTP/HTTPS for web application servers