cnotin

Clément Notin's starred repositories

PayloadsAllTheThings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Language:PythonMIT58639 18120

mimikatz

A little tool to play with Windows security

Language:C19070 920 383

juice-shop

OWASP Juice Shop: Probably the most modern and sophisticated insecure web application

Language:TypeScriptMIT9905 161 810

BloodHound

Six Degrees of Domain Admin

Language:PowerShellGPL-3.09621 378 508

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

Language:PythonGPL-3.05210 145 178

PrivescCheck

Privilege Escalation Enumeration Script for Windows

Language:PowerShellBSD-3-Clause2801 80 48

PetitPotam

PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.

Language:C1770 28 6

DSInternals

Directory Services Internals (DSInternals) PowerShell Module and Framework

Language:C#MIT1584 75 150

kekeo

A little toolbox to play with Microsoft Kerberos in C

Language:C1384 67 15

WatchAD

AD Security Intrusion Detection System

Language:PythonGPL-3.01284 47 44

superwhite

display a very bright white color on HDR-enabled displays

1202 5 5

AADInternals

AADInternals PowerShell module for administering Azure AD and Office 365

Language:PowerShellMIT1198 32 69

Exchange-AD-Privesc

Exchange privilege escalations to Active Directory

Language:PowerShellMIT709 26 1

SME

436 106 3

experiments

Expriments

Language:Python432 19 2

adeleg

Active Directory delegation management tool

Language:Rust273 7 11

nndefaccts

nnposter's alternate fingerprint dataset for Nmap script http-default-accounts

Language:LuaGPL-3.0240 13 4

forest-trust-tools

Proof-of-concept tools for my AD Forest trust research

Language:PythonMIT177 3 2

old-benchmarks-archive

Old CIS benchmarks archive

162 120

AD-security-workshop

Resources for our Active Directory security workshops

MIT140 12 1

BB-legal-FR

Quelques conseils autour des obligations légales, fiscales et juridique pour la pratique du Bug Bounty en France

MIT117 6 2

CARTP-cheatsheet

Azure AD cheatsheet for the CARTP course

90 30

openwec

An implementation of a Windows Event Collector server running on GNU/Linux.

Language:RustGPL-3.042 9 8

LiveDiffAD

AD Live changes viewer

Language:PowerShellGPL-3.035 40

AARO-Bugs

Vulnerabilities, exploits, and PoCs

Language:C34 16 2

gmsad

gmsad manages Active Directory group Managed Service Account (gMSA) on Linux

Language:PythonGPL-3.021 6 1

WAAD

Détection d'anomalie à partir des journaux d'authentification Windows

Language:PythonNOASSERTION16 80

MISC-AD-trusts-relationships

Lab files & scripts for our articles in MISC regarding Active Directory trusts relationships

Language:PowerShellMIT8 30

Tenable.ad-EventsLogs-Subscriber

Tenable.ad IOA module event logs listener

Language:RustApache-2.04 120

evt2kafka

Language:Rust2 10