m8r1us

PlansWithinPlans

This tool was created for the article: "An Exploration of AV Evasion Techniques". The script was made for educational reasons to demonstrate basic evasion techniques.

Bloodhound

AD Assessment scripts

Cryptography

Active-Directory-Cheatsheet

Advanced-Process-Injection-Workshop

AZSentinel

PowerShell module for Azure Sentinel

AzureADLateralMovement

Lateral Movement graph for Azure Active Directory

BARK

BloodHound Attack Research Kit

BloodHound-AzureAD

BloodHound with a twist of cloud

bloodhound-notebook

BloodHound Cypher Queries Ported to a Jupyter Notebook

BloodHoundAz

cypheroth

Automated, extensible toolset that runs cypher queries against Bloodhound's Neo4j backend and saves output to csv.

DeepBlueCLI

exploitation-course

Offensive Software Exploitation Course

IIS-Raid

A native backdoor module for Microsoft IIS (Internet Information Services)

Microsoft-Graph-Applications

Web application for showing all the application registrations in a Azure tenant

MicrosoftSecurity

Microsoft Security Guidance

o365-attack-toolkit

A toolkit to attack Office365

PowerZure

PowerShell script to interact with Azure

PrintNightmare

PrivescCheck

Privilege Escalation Enumeration Script for Windows

public-pentesting-reports

Curated list of public penetration test reports released by several consulting firms and academic security groups

ROADtools

The Azure AD exploration framework.

Rubeus

Trying to tame the three-headed dog.

rules

Repository of yara rules

RustHound

Active Directory data collector for BloodHound written in Rust. 🦀

Samples

Ramiro Calderon's personal repo

sha256-animation

Animation of the SHA-256 hash function in your terminal.

Whisker

Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.

writeups

Writeups for vulnerable machines.