Stars
Generates millions of keyword-based password mutations in seconds.
Active Directory information dumper via LDAP
A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!
SploitScan is a sophisticated cybersecurity utility designed to provide detailed information on vulnerabilities and associated exploits.
CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.
HostHunter a recon tool for discovering hostnames using OSINT techniques.
Active Directory Integrated DNS dumping by any authenticated user
An offensive security toolset for Microsoft 365 focused on Microsoft Copilot, Copilot Studio and Power Platform
Nuclei Templates Collection
Exchange your privileges for Domain Admin privs by abusing Exchange
Patch Binaries via MITM: BackdoorFactory + mitmProxy.
Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
smbclient-ng, a fast and user friendly way to interact with SMB shares.
Email recon made fast and easy, with a framework to build on
AzureGoat : A Damn Vulnerable Azure Infrastructure
SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.
Python decompiler for modern Python versions.
Just another Powerview alternative but on steroids
the Network Protocol Fuzzer that we will want to use.
Maintains a list of IPv4 DNS servers by verifying them against baseline servers, and ensuring accurate responses.
A tool that takes over Windows Updates to craft custom downgrades and expose past fixed vulnerabilities
Cobalt Strike random C2 Profile generator