Drew's starred repositories
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
nerd-fonts
Iconic font aggregator, collection, & patcher. 3,600+ icons, 50+ patched fonts: Hack, Source Code Pro, more. Glyph collections: Font Awesome, Material Design Icons, Octicons, & more
evil-winrm
The ultimate WinRM shell for hacking/pentesting
pwnedOrNot
OSINT Tool for Finding Passwords of Compromised Email Addresses
BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
firefox_decrypt
Firefox Decrypt is a tool to extract passwords from Mozilla (Firefox™, Waterfox™, Thunderbird®, SeaMonkey®) profiles
DomainPasswordSpray
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
Starkiller
Starkiller is a Frontend for PowerShell Empire.
fakelogonscreen
Fake Windows logon screen to steal passwords
enum4linux
enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts
PowerShell-for-Hackers
This repository is a collection of powershell functions every hacker should know
TREVORspray
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
nopowershell
PowerShell rebuilt in C# for Red Teaming purposes
visualsyslog
Syslog Server for Windows with a graphical user interface