behneyh

followers

following

stars

behneyh's starred repositories

PyOxidizer

A modern Python application packaging and distribution tool

Language:RustMPL-2.05324 62 564

merlin

Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.

Language:GoGPL-3.04998 139 103

GOAD

game of active directory

Language:PowerShellGPL-3.04728 75 171

PRET

Printer Exploitation Toolkit - The tool that made dumpster diving obsolete.

Language:PythonGPL-2.03821 198 68

BadBlood

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.

Language:PowerShellGPL-3.01961 49 7

vulnerable-AD

Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab

Language:PowerShellMIT1926 45 15

Azure-Red-Team

Azure Security Resources and Notes

Language:PowerShell1433 290

mortar

evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)

Language:PascalMIT1366 28 24

Shhhloader

Syscall Shellcode Loader (Work in Progress)

Language:PythonGPL-3.01084 25 34

AD_Miner

AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses

Language:JavaScriptGPL-3.01033 16 32

ADExplorerSnapshot.py

ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.

Language:Python841 8 28

spoofcheck

Simple script that checks a domain for email protections

Language:PythonMIT771 61 5

NetLoader

Loads any C# binary in mem, patching AMSI + ETW.

Language:C#769 20 4

PSPKIAudit

PowerShell toolkit for AD CS auditing based on the PSPKI toolkit.

Language:PowerShellMS-PL759 32 22

o365spray

Username enumeration and password spraying tool aimed at Microsoft O365.

Language:PythonMIT712 8 13

Pyramid

a tool to help operate in EDRs' blind spots

Language:PythonApache-2.0634 12 9

Nemesis

An offensive data enrichment pipeline

Language:PythonNOASSERTION572 9 9

Evilginx2-Phishlets

Evilginx3 Phishlets version (0.2.3 & above) Only For Testing/Learning Purposes

Language:CSS499 33 23

ADSearch

A tool to help query AD via the LDAP protocol

Language:C#431 8 2

UAC-BOF-Bonanza

Collection of UAC Bypass Techniques Weaponized as BOFs

Language:CGPL-3.0368 8 1

adeleg

Active Directory delegation management tool

Language:Rust273 7 11

gocheck

Because AV evasion should be easy.

Language:Go271 2 2

GamingServiceEoP

Language:C++144 20

Jigsaw

Hide shellcode by shuffling bytes into a random array and reconstruct at runtime

Language:Python140 3 1

ADeleginator

A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory

Language:PowerShell138 5 1

WindowsHardeningScript

Some settings stolen from multiple scripts @ZephrFish

Language:Batchfile112 80

Embedder

Embedder is a collection of sources in different languages to embed Python interpreter with minimal dependencies

Language:C++Apache-2.0109 30

Invoke-Pre2kSpray

Enumerate domain machine accounts and perform pre2k password spraying.

Language:PowerShell64 2 1

XingDumper

Python 3 script to dump/scrape/extract company employees from XING API

Language:Python34 30

BHCEupload

A small go tool to upload JSON files to the BloodHound community edition API

Language:GoMIT26 20