Windows Exploit Suggester - Next Generation

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling

New generation of wmiexec.py

smbclient-ng, a fast and user friendly way to interact with SMB shares.

Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data

Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel

Cobalt Strike Python API

A delicious, but malicious SSL-VPN server 🌮

A Red Team Activity Hub

IP Rotation from different providers - Like FireProx but for GCP, Azure, Alibaba and CloudFlare

Quick and dirty dynamic redirect.rules generator

A Python POC for CRED1 over SOCKS5

tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it

Vast.ai Password Kracking

Lightweight security tool for auditing your organization's Conditional Access Policies (CAPs) in Microsoft Entra ID for potential misconfigurations.

With zero dependencies, NetCredz extracts credentials from pcap files or live traffic, supporting NTLM, LDAP, HTTP, SMTP, SNMP, Telnet, FTP, and Kerberos, while also detecting DHCPv6 and LLMNR traf…

A Model Context Protocol (MCP) server to converse with data in Bloodhound

Umbrella will protect your shellcode from the rain.