pwnf's repositories
DDSpoof
DDSpoof is a tool that enables DHCP DNS Dynamic Update attacks against Microsoft DHCP servers in AD environments.
ntlm_theft
A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
FormThief
Spoofing desktop login applications with WinForms and WPF
ChromeKatz
Dump cookies directly from Chrome process memory
ThreadlessInject-C
This repository implements Threadless Injection in C
BOF-enumfiles
C++ implementation of a BOF to enumerate various types of files useful for post-exploitation
DirtyCLR
An App Domain Manager Injection DLL PoC on steroids
ReverseSocks5
Single executable reverse socks5 proxy written in Golang.
gowitness
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
linkedin2username
OSINT Tool: Generate username lists for companies on LinkedIn
NtlmThief
Extracting NetNTLM without touching lsass.exe
cookie-monster
BOF to steal browser cookies & credentials
Kerbeus-BOF
BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
Infosec_Reference
An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.
lofl
Living Off the Foreign Land setup scripts
net-creds
Sniffs sensitive data from interface or pcap
stunnel
Wrapping openvpn with stunnel
pretender
Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
SharpDPAPI
SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
LDAPWordlistHarvester
A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.
Pyramid
a tool to help operate in EDRs' blind spots
EnableWebDAVClient-BOF
Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
BofAllTheThings
Creating a repository with all public Beacon Object Files (BoFs)
DllNotificationInjection
A POC of a new “threadless” process injection technique that works by utilizing the concept of DLL Notification Callbacks in local and remote processes.
evilginx2-TTPs
Reverse engineered to remove IOCs, added Exchange Online Protection IP blacklist and bing-bot user-agent blocking, DNS configuration and notes on usage.