Stars
AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.
Stealing Signatures and Making One Invalid Signature at a Time
BloodyAD is an Active Directory Privilege Escalation Framework
smbclient-ng, a fast and user friendly way to interact with SMB shares.
SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.
Python version of the C# tool for "Shadow Credentials" attacks
onedrive user enumeration - pentest tool to enumerate valid o365 users
A SOCKS proxy written in Python that randomizes your source IP address. Round-robin your evil packets through SSH tunnels or give them billions of unique source addresses!
coffeegist / bofhound
Forked from fortalice/bofhoundGenerate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently supports Azure DevOps, GitHub and GitLab.
Lateral Movement Using DCOM and DLL Hijacking
Project for generating and identifying deceptive LNK files.
Group Policy Objects manipulation and exploitation framework
IP Rotation from different providers - Like FireProx but for GCP, Azure, Alibaba and CloudFlare
xforcered / RemoteMonologue
Forked from 3lp4tr0n/RemoteMonologueWeaponizing DCOM for NTLM Authentication Coercions
Python implementation of GhostPack's Seatbelt situational awareness tool
A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
A simple MCP server to search for documentation (tutorial)
This code silently installs Chrome extensions on Mac, Windows, and Linux
Retrieve inner payloads from Donut samples
A tool to remotely detect unusual sessions opened on windows machines using RPC