A-mIn3

Lantester

Academic project implementing basic first-hop LAN attacks such as DHCP starvation, ARP spoofing, DNS poisoning and more.

31-days-of-API-Security-Tips

This challenge is Inon Shkedy's 31 days API Security Tips.

ADACLScanner

Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory

ADTimeline

Timeline of Active Directory changes with replication metadata

attacking-and-auditing-docker-containers-and-kubernetes-clusters

Appsecco training course content on Attacking and Auditing Dockers Containers and Kubernetes Clusters

AZ-500-Azure-Security

BloodHound.py

A Python based ingestor for BloodHound

ccat

Cisco Config Analysis Tool

checkov

Prevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.

cloudgoat

CloudGoat is Rhino Security Labs' "Vulnerable by Design" AWS deployment tool

defcon_27_windbg_workshop

DEFCON 27 workshop - Modern Debugging with WinDbg Preview

fakelogonscreen

Fake Windows logon screen to steal passwords

kubeaudit

kubeaudit helps you audit your Kubernetes clusters against common security controls

LogonTracer

Investigate malicious Windows logon by visualizing and analyzing Windows event log

lsassy

Extract credentials from lsass remotely

MobileHackingCheatSheet

Basics on commands/tools/info on how to assess the security of mobile applications

msg-extractor

Extracts emails and attachments saved in Microsoft Outlook's .msg files

o365-attack-toolkit

A toolkit to attack Office365

Office365

Office 365 Powershell scripts

PowerZure

PowerShell script to interact with Azure

PrivescCheck

Privilege Escalation Enumeration Script for Windows

rdpy

Remote Desktop Protocol in Twisted Python

RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

RedTeamCSharpScripts

C# Script used for Red Team

SauronEye

Search tool to find specific files containing specific words, i.e. files containing passwords..

Seth

Perform a MitM attack and extract clear text credentials from RDP connections

SharpRDP

Remote Desktop Protocol .NET Console Application for Authenticated Command Execution

SMBLibrary

Free, Open Source, User-Mode SMB 1.0/CIFS, SMB 2.0, SMB 2.1 and SMB 3.0 server and client library

Sparrow

Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 environment.

VBA-RunPE

A VBA implementation of the RunPE technique or how to bypass application whitelisting.