s3m73x

juicy-potato

A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

fireprox

AWS API Gateway management tool for creating on the fly HTTP pass-through proxies for unique IP rotation

CredMaster

Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling

scantron

A distributed nmap / masscan scanning framework complete with scan scheduling, engine pooling, subsequent scan port diff-ing, and an API client for automation workflows.

Ps4-Pkg-Sender

Sends pkg files to your ps4 remotely

CVE-2021-1732

CVE-­2021­-1732 Microsoft Windows 10 本地提权漏 研究及Poc/Exploit开发

ADACLScanner

Repo for ADACLScan.ps1 - Your number one script for ACL's in Active Directory

0xsp-Mongoose

a unique framework for cybersecurity simulation and red teaming operations, windows auditing for newer vulnerabilities, misconfigurations and privilege escalations attacks, replicate the tactics and techniques of an advanced adversary in a network.

nessus2word

Covert .nessus into a tabulated data in word document.

nessus_reporter

Convert Nessus raw CSV's to MS WORD Documents.

pypykatz

Mimikatz implementation in pure Python

LsassSilentProcessExit

Command line interface to dump LSASS memory to disk via SilentProcessExit

EDRs

challenge-toolbox

The challenge toolbox is a small component which allows you to create, run and check new challenges locally.

firewalla

http://firewalla.com

ntlmscan

scan for NTLM directories

Ebowla

Framework for Making Environmental Keyed Payloads (NO LONGER SUPPORTED)

easy-provisioning

Provisioning systems made easy: A collection of Ansible, Packer, Vagrant and Virtualbox configuration and preseed files.

Penetration-Testing-Tools

A collection of more than 170+ tools, scripts, cheatsheets and other loots that I've developed over years for Red Teaming/Pentesting/IT Security audits purposes.

uncaptcha2

defeating the latest version of ReCaptcha with 91% accuracy

security-onion

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

rita-legacy

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

Ghostwriter

The SpecterOps project management and reporting engine

Active-Directory-Exploitation-Cheat-Sheet

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

AutoRecon

AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.

proxycannon-ng

A private botnet using multiple cloud environments for pentesters and red teamers. - Built by the community during a hackathon at the WWHF 2018 security conference

Nessus2Word

FuckThatPacker

A simple python packer to easily bypass Windows Defender

DefenderCheck

Identifies the bytes that Microsoft Defender flags on.

ABPTTS

TCP tunneling over HTTP/HTTPS for web application servers