Stars
Email OSINT & Password breach hunting tool, locally or using premium services. Supports chasing down related email
Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Directory environments
Combine words from two wordlist files and concatenate them with an optional delimiter
A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows.
shef - extract/scrape IPs from shodan without any API key
A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities
.NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
Infiltrax is a post-exploitation reconnaissance tool for penetration testers and red teams, designed to capture screenshots, retrieve clipboard contents, log keystrokes, bypass UAC and install AnyD…
Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!
Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available
A tool which is uses to remove Windows Defender in Windows 8.x, Windows 10 (every version) and Windows 11.
ps scripts to install and remove sentinelone
Veeam Backup Enterprise Manager Authentication Bypass (CVE-2024-29849)
As a regular contributor to Project WhatsMyName, this is a script I made for myself to check sites are working
A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE
Fileless ring 3 rootkit with installer and persistence that hides processes, files, network connections, etc.
Tool to remotely dump secrets from the Windows registry
NidhoggScript is a tool to generate "script" file that allows execution of multiple commands for Nidhogg
A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)
Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain
Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.
PrintNightmare (CVE-2021-34527) PoC Exploit