Pentest
C# Data Collector for the BloodHound Project, Version 3
SharpUp is a C# port of various PowerUp functionality.
A little tool to play with Windows security
Tool to audit and attack LAPS environments
Remote Desktop Protocol .NET Console Application for Authenticated Command Execution
Extracting Clear Text Passwords from mstsc.exe using API Hooking.
Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
A (partial) Python rewriting of PowerSploit's PowerView
A tool to create a JScript file which loads a .NET v2 assembly from memory.
Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling
An advanced tool for working with access tokens and Windows security policy.
Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into…
Parse NTLM challenge messages over HTTP and SMB
This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.
Sniffs sensitive data from interface or pcap
A collection of statically compiled tools like Nmap and Socat.
Hide process,port,self under Linux using the ld_preload
Cisco Anyconnect VPN unauth RCE (rwx stack)
Patator is a multi-purpose brute-forcer, with a modular design and a flexible usage.
ZKar is a Java serialization protocol analysis tool implement in Go.
A powerful browser crawler for web vulnerability scanners
Fetch web pages using headless Chrome, storing all fetched resources including JavaScript files. Run arbitrary JavaScript on many web pages and see the returned values
.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers