NotSurprised's starred repositories
FullBypass
A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.
PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
PrintNotifyPotato
PrintNotifyPotato
MicroBurst
A collection of scripts for assessing Microsoft Azure security
o365creeper
Python script that performs email address validation against Office 365 without submitting login attempts.
AADInternals
AADInternals PowerShell module for administering Azure AD and Office 365
vulnerable-AD
Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
CrackMapExec
A swiss army knife for pentesting networks
KrbRelayUp
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
Azure-Red-Team
Azure Security Resources and Notes
python-zxcvbn
A realistic password strength estimator.
ADExplorerSnapshot.py
ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.
HITCON-Badge-2019
HITCON electric badge for HITCON CMT 2019.
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
passphrase-wordlist
Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords
LAPSDumper
Dumping LAPS from Python
gMSADumper
Lists who can read any gMSA password blobs and parses them if the current user has access.
Windows-APT-Warfare
著作《Windows APT Warfare:惡意程式前線戰術指南》各章節技術實作之原始碼內容