l0ss

Grouper

A PowerShell script for helping to find vulnerable settings in AD Group Policy. (deprecated, use Grouper2 instead!)

Grouper2

Find vulnerabilities in AD Group Policy

Get-GPTrashfire

B-Sides CBR 2018 talk about group policy and Grouper

Chump2Trump

Slides from my AD Privesc talk at WAHCKon 2017

SharpUp

SharpUp is a C# port of various PowerUp functionality. Fork includes a couple of extra checks.

Fox

A companion tool for BloodHound offering Active Directory statistics and number crunching

FurbyConnect

l0ss and swarley's bits and pieces from the talk 'We have no idea how to hack a Furby Connect from BSides Canberra 2017.

Seatbelt

Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

Certify

Active Directory certificate abuse.

DAFT

DAFT: Database Audit Framework & Toolkit

DomainLab

Vagrant & Packer scripts mangled from clong's DetectionLab to build an AD testing environment.

ESC

Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration features. While ESC can be a handy SQL Client for daily tasks, it was originally designed for targeting SQL Servers during penetration tests and red team engagements. The intent of the project is to provide an .exe, but also sample files for execution through mediums like msbuild and PowerShell.

Group3r

You probably want https://github.com/Group3r/Group3r

kali-packer-vagrant

Packer and Vagrant configurations for Kali Linux

MakeMikeSad

Slides from my purplecon NZ talk in 2018

metasploit-framework

Metasploit Framework

misc

dotfiles, whatever.

Rubeus

Trying to tame the three-headed dog.

SharpHound

C# Data Collector for BloodHound

SharpHoundCommon

Common library used by SharpHound.

ThreatCheck

Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.

zmk-config