Security Training Share
audit_scripts Scripts to gather system configuration information for offline/remote auditing The audit scripts are a set of scripts intended to be run in systems to recover useful information for them. The information recovered should...
Nishang Nishang is a framework and collection of scripts and payloads which enables usage of PowerShell for offensive security, penetration testing and red teaming. Nishang is useful during all phases of penetration testing. Changelog...
Active Directory Assessment and Privilege Escalation (ADAPE) Script This script combines the ones I use routinely and autoruns the functions I use in those scripts, outputting the results into a zip file. This script...
Exchange-AD-Privesc This repository provides a few techniques and scripts regarding the impact of Microsoft Exchange deployment on Active Directory security. This is a side project of AD-Control-Paths, an AD permissions auditing project to which I...
BloodHound is a single page Javascript web application, built on top of Linkurious, compiled with Electron, with a Neo4jdatabase fed by a PowerShell ingestor. BloodHound uses graph theory to reveal the hidden and often unintended relationships within...
LinEnum For more information visit www.rebootuser.com Note: Export functionality is currently in the experimental stage. Changelog v0.8 (release 12-04-2018) Additions Prints contents of users .bash_history (if found) Looks for users that have used sudo Checks...
RedSnarf is a pen-testing / red-teaming tool by Ed William and Richard Davy for retrieving hashes and credentials from Windows workstations, servers and domain controllers using OpSec Safe Techniques. RedSnarf functionality includes: • Retrieval...
pwnat, pronounced “Poe-nat”, is a tool that allows any number of clients behind NATs to communicate with a server behind a separate NAT with *no* port forwarding *no* DMZ setup, and *no* 3rd party...
Windows Privilege Escalation Windows Privilege Escalation Techniques and Scripts CopyAndPasteFileDownloader.bat Windows file transfer script that can be pasted to the command line. File transfers to a Windows machine can be tricky without a Meterpreter...
Deep Exploit Fully automatic penetration test tool using Machine Learning. Deep Exploit is fully automated penetration tool linked with Metasploit. Deep Exploit has two exploitation modes. Intelligence mode Deep Exploit identifies the status of all opened...
