xh3n1

Xheni's starred repositories

zig

General-purpose programming language and toolchain for maintaining robust, optimal, and reusable software.

Language:ZigMIT32914 361 10997

ffuf

Fast web fuzzer written in Go

Language:GoMIT11985 157 506

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

Language:JavaScriptMIT8752 201 1457

sliver

Adversary Emulation Framework

Language:GoGPL-3.08030 145 720

gef

GEF (GDB Enhanced Features) - a modern experience for GDB with advanced debugging capabilities for exploit devs & reverse engineers on Linux

Language:PythonMIT6710 137 510

feroxbuster

A fast, simple, recursive content discovery tool written in Rust.

Language:RustMIT5628 52 285

evil-winrm

The ultimate WinRM shell for hacking/pentesting

Language:RubyLGPL-3.04343 800

ysoserial.net

Deserialization payload generator for a variety of .NET formatters

Language:C#MIT3117 75 62

NetExec

The Network Execution Tool

Language:PythonBSD-2-Clause2671 23 127

ligolo-ng

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Language:GoGPL-3.02465 26 77

Certipy

Tool for Active Directory Certificate Services enumeration and abuse

Language:PythonMIT2250 29 148

GodPotato

Language:C#Apache-2.01693 11 12

legba

A multiprotocol credentials bruteforcer / password sprayer and enumerator. 🥷

Language:RustNOASSERTION1349 13 44

sysreptor

Fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike.

Language:PythonNOASSERTION1287 18 232

mimikatz

Language:YARA1201 30 7

Powermad

PowerShell MachineAccountQuota and DNS exploit tools

Language:PowerShellBSD-3-Clause1179 31 11

bloodyAD

BloodyAD is an Active Directory Privilege Escalation Framework

Language:PythonMIT1131 13 40

krbrelayx

Kerberos unconstrained delegation abuse toolkit

Language:PythonMIT1087 16 22

RustHound

Active Directory data collector for BloodHound written in Rust. 🦀

Language:RustMIT886 12 18

SpoolSample

PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as well.

Language:C#BSD-3-Clause880 10 1

LAPSToolkit

Tool to audit and attack LAPS environments

Language:PowerShell778 18 1

Whisker

Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, effectively adding "Shadow Credentials" to the target account.

Language:C#775 11 3

SilkETW

Language:C#Apache-2.0710 42 15

xcat

XPath injection tool

Language:PythonMIT358 18 27

SeBackupPrivilege

Use SE_BACKUP_NAME/SeBackupPrivilege to access objects you shouldn't have access to

Language:C#258 3 1

botsv3

Splunk Boss of the SOC version 3 dataset.

CC0-1.0258 290

CVE-2023-2640-CVE-2023-32629

GameOver(lay) Ubuntu Privilege Escalation

Language:Shell106 1 2

CVE-2023-32629-CVE-2023-2640---POC-Escalation

Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640

Language:Shell106 30

HackTheBox-Reporting

Hack The Box CPTS, CBBH Exam and Lab Reporting / Note-Taking Tool

104 3 2

OffensivePythonPipeline

Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, and Make.

Language:Makefile96 3 4