Marcos Tolosa's repositories
RedTeaming-Tactics-and-Techniques
Red Teaming Tactics and Techniques
adidnsdump
Active Directory Integrated DNS dumping by any authenticated user
ADRecon
ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.
audioFlux
A library for audio and music analysis, feature extraction.
CVE-2021-1675
C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
Dehashed
This repo contains scripts to query dehashed.com and crack the returned hashes which will then save all cleartext passwords and hashes to files.
DomainPasswordSpray
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
Drake-Music-Clustering
Utilize Spotify web API data to create unique playlists through clustering
Empire
Empire is a PowerShell and Python 3.x post-exploitation framework.
gpp-decrypt
Tool to parse the Group Policy Preferences XML file which extracts the username and decrypts the cpassword attribute.
grpcui
An interactive web UI for gRPC, along the lines of postman
grpcurl
Like cURL, but for gRPC: Command-line tool for interacting with gRPC servers
jadx
Dex to Java decompiler
juicy-potato
A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
linkedin2username
OSINT Tool: Generate username lists for companies on LinkedIn
LyricsGenius
Download song lyrics and metadata from Genius.com 🎶🎤
nba-mvp-ml-modeling
using statistical and machine learning models to predict NBA's MVP award
net-creds
Sniffs sensitive data from interface or pcap
noPac
Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
PentestGPT
A GPT-empowered penetration testing tool
PKINITtools
Tools for Kerberos PKINIT and relaying to AD CS
Snaffler
a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
SpotiFile
Spotify scraper
tcpdump
the TCPdump network dissector
WADComs.github.io
WADComs is an interactive cheat sheet, containing a curated list of offensive security tools and their respective commands, to be used against Windows/AD environments.