Stars
Gopacket is a clean Go implementation of Impacket, a library intended for working with network protocols.
illmob / KslKatz
Forked from yenick514/KslKatzCombining KslDump and GhostKatz to dump LSASS using no-fix KslD.sys memory read to bypass PPL. Extracts MSV1_0 NT hashes and WDigest cleartext passwords (if enabled) from LSASS using a Microsoft-si…
A tool to perform Kerberos pre-auth bruteforcing
High Fidelity Detection Mechanism for RSC/Next.js RCE (CVE-2025-55182 & CVE-2025-66478)
Harden Windows Safely, Securely using Official Supported Microsoft methods and proper explanation | Always up-to-date and works with the latest build of Windows | Provides tools and Guides for Pers…
Leverage WindowsApp createdump tool to obtain an lsass dump
ShuckNT is the script of Shuck.sh online service for on-premise use. It is design to dowgrade, convert, dissect and shuck authentication token based on Data Encryption Standard (DES).
.NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used in Obsidian
HikvisionExploiter is a Python-based utility designed to automate exploitation and directory accessibility checks on Hikvision network cameras exploiting the Web interface Version 3.1.3.150324 + CV…
A simple tool for bypassing file upload restrictions.
Mind maps / flow charts to help with privilege escalation on the OSCP.
Scan target process memory for byte signatures
Dump cookies and credentials directly from Chrome/Edge process memory
SeImpersonate privilege escalation tool for Windows 8 - 11 and Windows Server 2012 - 2022 with extensive PowerShell and .NET reflection support.
Open-source tool to enforce privacy & security best-practices on Windows, macOS and Linux, because privacy is sexy
My handbook for Windows Privilege Escalation concepts. Do Check out my Playlist, link: https://www.youtube.com/playlist?list=PLlrnAg4kKF3puXLI0JyltbNJOC2R2HVFk
comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reduction (ASR) rules without Admin privileges
smbclient-ng, a fast and user friendly way to interact with SMB shares.
PowerShell script to create reports of M365 User Multi-factor Authentication Registration Status and Highlight MFA Related Conditional Access Policy Gaps
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
Tool for Active Directory Certificate Services enumeration and abuse
A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.