NotSurprised

NotSurprised's starred repositories

FullBypass

A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell.

Language:C#GPL-3.061400

ipyida

IPython console integration for IDA Pro

Language:PythonNOASSERTION70000

Havoc

The Havoc Framework.

Language:GoGPL-3.0636200

PetitPotam

PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.

Language:C176900

PrintNotifyPotato

Language:C#49200

MicroBurst

A collection of scripts for assessing Microsoft Azure security

Language:PowerShellNOASSERTION195200

o365creeper

Python script that performs email address validation against Office 365 without submitting login attempts.

Language:PythonBSD-2-Clause31400

AADInternals

AADInternals PowerShell module for administering Azure AD and Office 365

Language:PowerShellMIT119700

Seatbelt

Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

Language:C#NOASSERTION360500

nanodump

The swiss army knife of LSASS dumping

Language:CMIT169300

vulnerable-AD

Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

Language:PowerShellMIT192600

CrackMapExec

A swiss army knife for pentesting networks

Language:PythonBSD-2-Clause826700

KrbRelayUp

KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).

Language:C#149500

Certipy

Tool for Active Directory Certificate Services enumeration and abuse

Language:PythonMIT224300

PoshADCS

A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)

Language:PowerShellBSD-3-Clause17600

Azure-Red-Team

Azure Security Resources and Notes

Language:PowerShell143300

python-zxcvbn

A realistic password strength estimator.

Language:HTMLMIT25300

psfalcon

PowerShell for CrowdStrike's OAuth2 APIs

Language:PowerShellUnlicense33400

ADExplorerSnapshot.py

ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.

Language:Python84100

krbrelayx

Kerberos unconstrained delegation abuse toolkit

Language:PythonMIT108000

HITCON-Badge-2019

HITCON electric badge for HITCON CMT 2019.

Language:CMIT7700

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonMIT5861000

passphrase-wordlist

Passphrase wordlist and hashcat rules for offline cracking of long, complex passwords

Language:PythonMIT117400

PPLdump

Dump the memory of a PPL with a userland exploit

Language:CMIT83000

LAPSDumper

Dumping LAPS from Python

Language:PythonGPL-3.024700

impacket

Impacket is a collection of Python classes for working with network protocols.

Language:PythonNOASSERTION1306000

gMSADumper

Lists who can read any gMSA password blobs and parses them if the current user has access.

Language:PythonGPL-3.023300

C3

Custom Command and Control (C3). A framework for rapid prototyping of custom C2 channels, while still providing integration with existing offensive toolkits.

Language:C++NOASSERTION148300

Windows-APT-Warfare

著作《Windows APT Warfare：惡意程式前線戰術指南》各章節技術實作之原始碼內容

Language:C++GPL-3.037200

qiling

A True Instrumentable Binary Emulation Framework

Language:PythonGPL-2.0497600