zblurx

certsync

Dump NTDS with golden certificates and UnPAC the hash

dploot

DPAPI looting remotely and locally in Python

acltoolkit

ACL abuse swiss-knife

impersonate-rs

Rusty Impersonate

BloodHoundCustomQueries

My BloodHound custom queries

acherus

Acherus, The Docker Hold, is a containerized hacking environment gathering many tools and resources

dotfiles

ntdsutil.py

Dump NTDS remotely with ntdsutil.exe

impacket

Impacket is a collection of Python classes for working with network protocols.

dhcpp

DHCP enumeration tool

DonPAPI

Dumping DPAPI credz remotely

lsassy

Extract credentials from lsass remotely

msldap

LDAP library for auditing MS AD

zblurx

arsenal

Arsenal is just a quick inventory and launcher for hacking programs

adconnectdump

Dump Azure AD Connect credentials for Azure AD and Active Directory

BloodHound.py

A Python based ingestor for BloodHound

brb

Bruteforce extensions on URLs (bak, bak1, 1, ~, etc.)

Coercer

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

CrackMapExec

A swiss army knife for pentesting networks

fbhq

Fast BloodHound Queries, right in your terminal

gf-patterns

Collection grep patterns for Tom Hudson a.k.a Tomnomnom tools namely gf

hike

Browse different urls based on one url

jsloot

Looting juicy stuff in JS files

slimjim

A set of scripts for managing an Ethernet Person-in-the-Middle device, a la Duckwall "A Bridge Too Far"