Stars
A tool for generating multiple types of NTLMv2 hash theft files by Jaco 8000 b Wilkin (Greenwolf)
A simple automation tool to detect lfi, rce and ssti vulnerability
Just another Powerview alternative but on steroids
Detailed explanation of Windows cryptographic algorithms, with examples and schemes.
A webshell plugin and interactive shell for pentesting a LimeSurvey application.
List accounts with Service Principal Names (SPN) not linked to active dns records in an Active Directory Domain.
A webshell plugin and interactive shell for pentesting a Moodle instance.
A webshell plugin and interactive shell for pentesting a Joomla website.
A simple python script to dump remote files through a local file read or local file inclusion web vulnerability.
A webshell plugin and interactive shell for pentesting a WordPress website.
A webshell application and interactive shell for pentesting Apache Tomcat servers.
Python setter/getter for property ms-Mcs-AdmPwd used by LAPS.
GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.
A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.
This Python script can be used to bypass IP source restrictions using HTTP headers.
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
A python script to scan for Apache Tomcat server vulnerabilities.
Local File Inclusion discovery and exploitation tool
A community-driven collection of BloodHound queries
PowerShell script that restores deleted Active Directory objects in DC's prior to Windows Server 2008
A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.
PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019