Marek Kovalčík's repositories
CrackMapExec
A swiss army knife for pentesting networks
PyLazyS3
Enumerate AWS S3 buckets using different permutations
ldapdomaindump
Active Directory information dumper via LDAP
Privesc
Windows batch script that finds misconfiguration issues which can lead to privilege escalation.
s3tk
A security toolkit for Amazon S3
CVE-2021-1675
C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
ROADtools
The Azure AD exploration framework.
lanturtle-modules
The Official LAN Turtle Module Repository
ESP8266_Router_Honeypot
A NAT router with an FTP honeypot using a canarytoken
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
BeRoot
Privilege Escalation Project - Windows / Linux / Mac
Sparrow
Sparrow.ps1 was created by CISA's Cloud Forensics team to help detect possible compromised accounts and applications in the Azure/m365 environment.
CVE-2021-1676
Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
CloudBrute
Awesome cloud enumerator
PowerZure
PowerShell framework to assess Azure security
DomainPasswordSpray
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
kerbrute
A tool to perform Kerberos pre-auth bruteforcing
MFASweep
A tool for checking if MFA is enabled on multiple Microsoft Services
wifipineapple-modules
The Official WiFi Pineapple Module Repository for the NANO & TETRA
hackthebox-writeups
Writeups for HacktheBox 'boot2root' machines
cloud_enum
Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.
OptimizationFramework
Stochastic programming optimization framework based on GAMS and Python.
S3Scanner
Scan for open S3 buckets and dump the contents
JPEG2000_SecurityAnalysis
Analýza zabezpečení formátu JPEG 2000 proti chybám - Error Resilience Analysis for JPEG 2000
BlobHunter
Find exposed data in Azure with this public blob scanner
s3recon
Amazon S3 bucket finder and crawler.
SkyArk
SkyArk helps to discover, assess and secure the most privileged entities in Azure and AWS
adconnectdump
Dump Azure AD Connect credentials for Azure AD and Active Directory