sp00ks's repositories
GraphRunner
A Post-exploitation Toolset for Interacting with the Microsoft Graph API
stable-diffusion-webui
Stable Diffusion web UI
Responder
Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
OffensiveNim
My experiments in weaponizing Nim (https://nim-lang.org/)
PoolParty
A set of fully-undetectable process injection techniques abusing Windows Thread Pools
flipper-zero-evil-portal
Evil portal app for the flipper zero + WiFi dev board
WinPwn
Automation for internal Windows Penetrationtest / AD-Security
ADRecon
ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.
hashcat
World's fastest and most advanced password recovery utility
Invoke-Obfuscation
PowerShell Obfuscator
evilgophish
evilginx3 + gophish
MFASweep
A tool for checking if MFA is enabled on multiple Microsoft Services
Egress-Assess
Egress-Assess is a tool used to test egress data detection capabilities
TeamFiltration
TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts
xencrypt
A PowerShell script anti-virus evasion tool
unleashed-firmware
Flipper Zero Unleashed Firmware
evilginx2
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
-Keyestudio-Solar-Tracking-Mod
Keyestudio Solar Tracking Modded Code for all kit parts (except LED) and actual serial outputs
AzureADRecon
AzureADRecon is a tool which gathers information about the Azure Active Directory and generates a report which can provide a holistic picture of the current state of the target environment.
Certify
Active Directory certificate abuse.
chisel
A fast TCP/UDP tunnel over HTTP