Sachin Kamath's repositories
ADAPE-Script
Active Directory Assessment and Privilege Escalation Script
adconnectdump
Dump Azure AD Connect credentials for Azure AD and Active Directory
adidnsdump
Active Directory Integrated DNS dumping by any authenticated user
ADRecon
ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.
ArchStrike
An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.
AttackSurfaceMapper
AttackSurfaceMapper is a tool that aims to automate the reconnaissance process.
awspx
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
azure-activedirectory-library-for-python
ADAL for Python
AzureADRecon
AzureADRecon is a tool which gathers information about the Azure Active Directory and generates a report which can provide a holistic picture of the current state of the target environment.
Bloodhound-Custom-Queries
Custom Query list for the Bloodhound GUI based off my cheatsheet
CrackMapExec
A swiss army knife for pentesting networks
CTFd
CTFs as you need them
CVE-2020-8813
The official exploit for Cacti v1.2.8 Remote Code Execution CVE-2020-8813
dotfiles
Arch Linux [i3-gaps + polybar]
exchangelib
Python client for Microsoft Exchange Web Services (EWS)
FullPowers
Recover the default privilege set of a LOCAL/NETWORK SERVICE account
hacks
A collection of hacks and one-off scripts
http-request-translator
HTTP Request Translator (hrt) translates raw HTTP requests to different scripts (bash, python, etc.)
MSOLSpray
A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn't exist, if a user doesn't exist, if the account is locked, or if the account is disabled.
my-arsenal-of-aws-security-tools
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
nerdlist
list of passwords more likely to be used by sysadmins, general nerds, and folk with access
owtf
Offensive Web Testing Framework (OWTF), is an OWASP+PTES focused try to unite great tools and make pen testing more efficient, written mostly in Python @owtfp http://owtf.org
privilege-escalation-awesome-scripts-suite
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
pyppeteer2
Headless chrome/chromium automation library (unofficial port of puppeteer) - active fork
sprayhound
Password spraying tool and Bloodhound integration
SprayingToolkit
Scripts to make password spraying attacks against Lync/S4B & OWA a lot quicker, less painful and more efficient
spraykatz
Credentials gathering tool automating remote procdump and parse of lsass process.
UhOh365
A script that can see if an email address is valid in Office365 (user/email enumeration). This does not perform any login attempts, is unthrottled, and is incredibly useful for social engineering assessments to find which emails exist and which don't.
zombieant
Zombie Ant Farm: Primitives and Offensive Tooling for Linux EDR evasion.