CBHue

PyFuscation

Obfuscate powershell scripts by replacing Function names, Variables and Parameters.

Recon-da

Performs initial recon of provided targets.

HashcatHerder

This is a set it an forget it hashcat wrapper written in python3. it loops over a set of wordlists untill it cracks all the passwords or cycles thru all the wordlists.

pubCrawl

Use Shodan & Censys to perform port lookup on a list of ip's

hashID

Software to identify the different types of hashes -

PrivescCheck

Privilege Escalation Enumeration Script for Windows

Red-Teaming-Toolkit

A collection of open source and commercial tools that aid in red team operations.

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

setup

Setup script for Kali. Installs commonly used tools

SharpShooter

Payload Generation Framework

WAppFU

BloodHound.py

A Python based ingestor for BloodHound

concealed_code_execution

Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows

CredMaster

Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling

CVE-2019-18935

RCE exploit for a .NET deserialization vulnerability in Telerik UI for ASP.NET AJAX.

donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

EvilClippy

A cross-platform assistant for creating malicious MS Office documents. Can hide VBA macros, stomp VBA code (via P-Code) and confuse macro analysis tools. Runs on Linux, OSX and Windows.

fireprox

AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation

flare-floss

FireEye Labs Obfuscated String Solver - Automatically extract obfuscated strings from malware.

GhostLoader

GhostLoader - AppDomainManager - Injection - 攻壳机动队

MFASweep

A tool for checking if MFA is enabled on multiple Microsoft Services

mhydeath

Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.

OfficePurge

PoolParty

A set of fully-undetectable process injection techniques abusing Windows Thread Pools

speakeasy

Windows kernel and user mode emulation.

SQLRecon

A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.

Terminator

Reproducing Spyboy technique to terminate all EDR/XDR/AVs processes

Volumiser

WinEnum

XSS-Keylogger