Security Training Share
NetRipper – this is a fairly recent tool that is positioned for the post-operating system based on Windows and uses a number of non-standard approaches to extract sensitive data. It uses API hooking in...
BloodHound.py BloodHound.py is a Python-based ingestor for BloodHound, based on Impacket. This tool is currently in Beta and should not be considered feature-complete or fully stable. Limitations BloodHound.py currently has the following limitations: Currently only single...
UACMe Defeating Windows User Account Control by abusing built-in Windows AutoElevate backdoor. System Requirements x86-32/x64 Windows 7/8/8.1/10TH1/10TH2/10RS1/10RS2 (client, some methods, however, works on server version too). Admin account with UAC set on default settings...
BeRoot Project is a post exploitation tool to check common misconfigurations to find a way to escalate our privilege. It has been added to the pupy project as a post exploitation module (so it will be...
Mimikatz is an open source gadget written in C, launched in April 2014. It is very powerful, support from the Windows system memory to extract clear text password, hash, PIN code and Kerberos credentials,...
kekeo kekeo is a little toolbox I have started to manipulate Microsoft Kerberos in C (and for fun) Download kekeo includes kirbikator is a little tool to convert Kerberos tickets from different formats to another....
PowerShell-Suite There are great tools and resources online to accomplish most any task in PowerShell, sometimes, however, there is a need to script together a util for a specific purpose or to bridge an...
SQLC2 SQLC2 is a PowerShell script for deploying and managing a command and control system that uses SQL Server as both the control server and the agent. At its core, SQLC2 is just a...
Sleight Empire HTTP(S) C2 redirector setup script. Download git clone https://github.com/V1V1/Sleight.git Usage: Sleight can be used in 3 ways: 1) Setup HTTP Redirector: Run Sleight and feed it an Empire communication profile. Input your...
Recently, windows/local/bypassuac_sluihijack module was added to Metasploit Framework. This module will bypass UAC on Windows 8-10 by hijacking a special key in the Registry under the Current User hive, and inserting a custom command that...
