Qftm

followers

following

stars

♡

Internet

https://qftm.github.io

Qftm's starred repositories

BypassNeo-reGeorg

免杀版Neo-reGeorg

Language:Python24300

Neo-reGeorg

Neo-reGeorg is a project that seeks to aggressively refactor reGeorg

Language:JavaGPL-3.0269100

eaphammer

Targeted evil twin attacks against WPA2-Enterprise networks. Indirect wireless pivots using hostile portal attacks.

Language:CGPL-3.0200700

Venom

Venom - A Multi-hop Proxy for Penetration Testers

Language:GoMIT193900

Stowaway

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Language:GoMIT244000

frida-ios-dump

pull decrypted ipa from jailbreak device

Language:JavaScriptMIT328500

dnsx

dnsx is a fast and multi-purpose DNS toolkit allow to run multiple DNS queries of your choice with a list of user-supplied resolvers.

Language:GoMIT201400

ENScan_GO

一款基于各大企业信息API的工具，解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。

Language:GoApache-2.0268600

WinPwn

Automation for internal Windows Penetrationtest / AD-Security

Language:PowerShellBSD-3-Clause321100

AD-AssessmentKit

Contains a collection of Bash scripts designed for comprehensive security audits and network mapping of Active Directory (AD) environments. The scripts automate various tasks including LDAP querying, Kerberos ticket analysis, SMB enumeration, and exploitation of known vulnerabilities like Zerologon and PetitPotam.

Language:Shell12400

DarkAngel

DarkAngel 是一款全自动白帽漏洞扫描器，从hackerone、bugcrowd资产监听到漏洞报告生成、漏洞URL截屏、消息通知。

Language:RubyMIT56100

attack_data

A repository of curated datasets from various attacks

Language:PythonApache-2.054000

adidnsdump

Active Directory Integrated DNS dumping by any authenticated user

Language:PythonMIT86200

pywhisker

Python version of the C# tool for "Shadow Credentials" attacks

Language:PythonGPL-3.055100

Whisker

Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.

Language:C#75800

LogonTracer

Investigate malicious Windows logon by visualizing and analyzing Windows event log

Language:PythonNOASSERTION264500

MalSCCM

Language:C#23800

SharpWSUS

Language:C#42800

ADFSRelay

Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS

Language:GoApache-2.017100

ADCSPwn

A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certificate service.

Language:C#79900

Coercer

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

Language:PythonGPL-2.0159400

PrivExchange

Exchange your privileges for Domain Admin privs by abusing Exchange

Language:PythonMIT95100

ShadowCoerce

MS-FSRVP coercion abuse PoC

Language:PythonGPL-3.026200

DFSCoerce

Language:Python69300

RelayX

NTLM relay test.

Language:Python18100

CVE-2018-8581

CVE-2018-8581 | Microsoft Exchange Server Elevation of Privilege Vulnerability

Language:Python33300

ExchangeRelayX

An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.

Language:JavaScriptGPL-3.030000

NtlmRelayToEWS

ntlm relay attack to Exchange Web Services

Language:PythonGPL-3.032700

krbrelayx

Kerberos unconstrained delegation abuse toolkit

Language:PythonMIT103100

PetitPotam

PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.

Language:C173300