behneyh's starred repositories
PyOxidizer
A modern Python application packaging and distribution tool
BadBlood
BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
vulnerable-AD
Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
Azure-Red-Team
Azure Security Resources and Notes
Shhhloader
Syscall Shellcode Loader (Work in Progress)
ADExplorerSnapshot.py
ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.
spoofcheck
Simple script that checks a domain for email protections
PSPKIAudit
PowerShell toolkit for AD CS auditing based on the PSPKI toolkit.
Evilginx2-Phishlets
Evilginx3 Phishlets version (0.2.3 & above) Only For Testing/Learning Purposes
UAC-BOF-Bonanza
Collection of UAC Bypass Techniques Weaponized as BOFs
ADeleginator
A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory
WindowsHardeningScript
Some settings stolen from multiple scripts @ZephrFish
Invoke-Pre2kSpray
Enumerate domain machine accounts and perform pre2k password spraying.
XingDumper
Python 3 script to dump/scrape/extract company employees from XING API
BHCEupload
A small go tool to upload JSON files to the BloodHound community edition API