ZephrFish

GoogD0rker

Note: Going through a full re-write of the tooling so the current versions in the repo do not work!

Wordlists

Various Payload wordlists

CVE-2020-16898

HoneyPoC 2.0: Proof-of-Concept (PoC) script to exploit IPv6 (CVE-2020-16898).

NessusPreFlight

Nessus Preflight(NPF) Check for local and remote systems. Essentially sets three registry keys and restarts a service to allow nessus to scan a machine

PS-Scripts

Useful scripts for labs

Random-Yara-Rules

A collection of yara rules I've gathered over the years :-)

sendemail

lightweight, command line SMTP email client

asscan

Automated Subnet Scanner

cve-2020-1351

Bash Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Server 2003 up to Windows Server 2019.

msf-autoshell

Feed the tool a .nessus file and it will automatically get you MSF shell

rengine

reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine has customizable scan engines, which can be used to scan the websites, endpoints, and gather information.

zephrfish.github.io

zsec backup blog

ASREPRoast

Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.

Bloodhound-Custom-Queries

Custom Query list for the Bloodhound GUI based off my cheatsheet

C4

Cyberdelia, a Collection of Command and Control frameworks

CoverStory

A cover story generator for people who Need Quick Covers On Operations

EyeWitness

EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.

GitTools

A repository with 3 tools for pwn'ing websites with .git repositories available

nmap-summariser

another nmap summarising script

SharpC2

.NET C2 Framework Proof of Concept

sherlock

🔎 Hunt down social media accounts by username across social networks

TJ-JPT

This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used in Joplin

cobalt-arsenal

My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+

CobaltStrikeToGhostWriter

Log converter from CS log to Ghostwriter CSV

CVE-2020-5902

SH

sysmon-config

Sysmon configuration file template with default high-quality event tracing

unicorn

Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's powershell attacks and the powershell bypass technique presented by David Kennedy (TrustedSec) and Josh Kelly at Defcon 18.

hax

openvpn-install

OpenVPN road warrior installer for Ubuntu, Debian, CentOS and Fedora