nvijatov

awesome-windows-domain-hardening

A curated list of awesome Security Hardening techniques for Windows.

DetectRaptor

A repository to share publicly available Velociraptor detection content

impacket

Impacket is a collection of Python classes for working with network protocols.

privilege-escalation-awesome-scripts-suite

PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)

Watson

Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities

evil-winrm

The ultimate WinRM shell for hacking/pentesting

BloodHound.py

A Python based ingestor for BloodHound

BLUESPAWN

Windows-based Active Defense and EDR tool to empower Blue Teams

CHKP_api_examples

This repository contains examples using the Check Point APIs

donut

Generates x86, x64, or AMD64+x86 position-independent shellcode that loads .NET Assemblies, PE files, and other Windows payloads from memory and runs them with parameters

kerbrute

An script to perform kerberos bruteforcing by using impacket

leHACK19

Write-up for the Active Directory Lab I have created for Akerva exhibition stand @ leHACK19 (Paris)

LinEnum

Scripted Local Linux Enumeration & Privilege Escalation Checks

lme

Logging Made Easy

mimikatz

A little tool to play with Windows security

my-arsenal-of-aws-security-tools

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Net-GPPPassword

.NET implementation of Get-GPPPassword. Retrieves the plaintext password and other information for accounts pushed through Group Policy Preferences.

PassFiltEx

PassFiltEx. An Active Directory Password Filter.

php-docs-hello-world

A simple php application for docs

PSGumshoe

Red_Team

Some scripts useful for red team activities

RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

ScoutSuite

Multi-Cloud Security Auditing Tool

SecLists

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

shellcode-process-injection

Simple C implementation to perform shellcode process injection via win32 APIs

SysmonCommunityGuide

TrustedSec Sysinternals Sysmon Community Guide

ThreatHunter-Playbook

A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.

webshell

This is a webshell open source project

Windows-10-Hardening

windows-forensic-artifacts

Handbook of windows forensic artifacts across multiple Windows version with interpretation tips with some examples. Work in progress!