Bryan Hoffower's starred repositories
public-pentesting-reports
A list of public penetration test reports published by several consulting firms and academic security groups.
awesome-console-services
A curated list of awesome console services (reachable via HTTP, HTTPS and other network protocols)
mimipenguin
A tool to dump the login password from the current linux user
pingcastle
PingCastle - Get Active Directory Security at 80% in 20% of the time
100-redteam-projects
Projects for security students
A-Red-Teamer-diaries
RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
RedTeaming_CheatSheet
Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.
TokenTactics
Azure JWT Token Manipulation Toolset
NetworkNightmare
Network Pentesting Mindmap by Caster
PhishingTemplates
This is a collection of phishing templates and a landing page to be used with goPhish
powershell-backdoor-generator
Reverse backdoor written in PowerShell and obfuscated with Python. It generates payloads for popular hacking devices like Flipper Zero and Hak5 USB Rubber Ducky, and changes its signature after every build to help avoid AV.
packer-tutorial
A tutorial on how to write a packer for Windows!
sans-indexes
Indexes for SANS Courses and GIAC Certifications
psexec_noinstall
Repository contains psexec, which will help to exploit the forgotten pipe
BackupOperatorToolkit
The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
SSH-Remote-Code-Execution
SSH Zero-Day Made By ClumsyLulz
vulnerable-AD-plus
Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
S3BucketList
Chrome extension that lists Amazon S3 Buckets while browsing
AWS-Certified-Cloud-Practitioner-Exam-Guide
AWS Certified Cloud Practitioner Exam Guide, published by Packt
AWS-Penetration-Testing
AWS Penetration Testing, published by Packt