m8r1us

PlansWithinPlans

This tool was created for the article: "An Exploration of AV Evasion Techniques". The script was made for educational reasons to demonstrate basic evasion techniques.

Bloodhound

AD Assessment scripts

Cryptography

WELA

WELA (Windows Event Log Analyzer): The Swiss Army knife for Windows Event Logs! ゑ羅（ウェラ）

Active-Directory-Cheatsheet

Advanced-Process-Injection-Workshop

AzureADLateralMovement

Lateral Movement graph for Azure Active Directory

BARK

BloodHound Attack Research Kit

BloodHound-AzureAD

BloodHound with a twist of cloud

bloodhound-notebook

BloodHound Cypher Queries Ported to a Jupyter Notebook

BloodHoundAz

DeepBlueCLI

exploitation-course

Offensive Software Exploitation Course

GPOddity

The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).

IIS-Raid

A native backdoor module for Microsoft IIS (Internet Information Services)

impacket

Impacket is a collection of Python classes for working with network protocols.

o365-attack-toolkit

A toolkit to attack Office365

PK-AADAppReg

PowerZure

PowerShell script to interact with Azure

PrintNightmare

PrivescCheck

Privilege Escalation Enumeration Script for Windows

public-pentesting-reports

Curated list of public penetration test reports released by several consulting firms and academic security groups

ROADtools

The Azure AD exploration framework.

Rubeus

Trying to tame the three-headed dog.

rules

Repository of yara rules

RustHound

Active Directory data collector for BloodHound written in Rust. 🦀

sha256-animation

Animation of the SHA-256 hash function in your terminal.

Tier0Hound

Whisker

Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.

writeups

Writeups for vulnerable machines.