dahelanren's repositories
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
HppDLL
Source code for HppDLL - local password dumping using MsvpPasswordValidate hooks
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Stormspotter
Azure Red Team tool for graphing Azure and Azure Active Directory objects
nuclei
Nuclei is a fast tool for configurable targeted scanning based on templates offering massive extensibility and ease of use.
HardeningKitty
Invoke-HardeningKitty - Checks and hardens your Windows configuration
evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
xray
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
cef
Chromium Embedded Framework (CEF) official mirror. A simple framework for embedding Chromium-based browsers in other applications.
lpeworkshop
Windows / Linux Local Privilege Escalation Workshop
powerpxe
Powershell script to extract information from boot PXE
pwnmachine
Vagrant setup for building a machine for CTF/exploit development
SharePointFBAPack
The SharePoint FBA Pack for SharePoint 2010, 2013, 2016 & 2019. Web parts and tools to manage your SharePoint forms based authentication users.
whonow
A "malicious" DNS server for executing DNS Rebinding attacks on the fly (public instance running on rebind.network:53)