Mimikatz is an open source gadget written in C, launched in April 2014. It is very powerful, support from the Windows system memory to extract…
View More mimikatz 2.2.0 20190414 releases: A little tool to play with Windows security
Category: Post Exploitation
Merlin v0.7 release: cross-platform post-exploitation HTTP/2 Command & Control server and agent
Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang. An introductory blog post can be found here. Evade network…
View More Merlin v0.7 release: cross-platform post-exploitation HTTP/2 Command & Control server and agent
Apfell v1.2 releases: A macOS, post-exploit, red teaming framework
Apfell A macOS, post-exploit, red teaming framework Feature: Payloads – JXA I created the ability to use the base JXA template, swap in your own…
View More Apfell v1.2 releases: A macOS, post-exploit, red teaming framework
kekeo 2.2.0 20190407 released: A little toolbox to play with Microsoft Kerberos
kekeo kekeo is a little toolbox I have started to manipulate Microsoft Kerberos in C (and for fun) Changelog 2.2.0 20190406 [internal] string search in HTTP…
View More kekeo 2.2.0 20190407 released: A little toolbox to play with Microsoft Kerberos
enumdb v2.0.7 released: MySQL and MSSQL brute force and post exploitation tool
Enumdb is a brute force and post exploitation tool for MySQL and MSSQL databases. When provided a list of usernames and/or passwords, it will cycle…
View More enumdb v2.0.7 released: MySQL and MSSQL brute force and post exploitation tool
nopowershell v1.21 releases: PowerShell rebuilt in C# for Red Teaming purposes
NoPowerShell NoPowerShell is a tool implemented in C# which supports executing PowerShell-like commands while remaining invisible to any PowerShell logging mechanisms. This .NET Framework 2…
View More nopowershell v1.21 releases: PowerShell rebuilt in C# for Red Teaming purposes
UACME v3.1.8 releases: Defeating Windows User Account Control
UACMe Defeating Windows User Account Control by abusing built-in Windows AutoElevate backdoor. System Requirements x86-32/x64 Windows 7/8/8.1/10TH1/10TH2/10RS1/10RS2 (client, some methods, however, works on server version…
View More UACME v3.1.8 releases: Defeating Windows User Account Control
mXtract v1.1 releases: Memory Extractor & Analyzer
mXtract An open source Linux based tool that analyzes and dumps memory. It is developed as an offensive penetration testing tool, which is used to…
View More mXtract v1.1 releases: Memory Extractor & Analyzer
LiMEaide v2.0.0 releases: remotely dump RAM of a Linux client
LiMEaide LiMEaide is a python application designed to remotely dump RAM on a Linux client and create a volatility profile for later analysis on your…
View More LiMEaide v2.0.0 releases: remotely dump RAM of a Linux client
Tokenvator v2.1.1 releases: A tool to elevate privilege with Windows Tokens
Tokenvator A tool to elevate privilege with Windows Tokens This tool has two methods of operation – interactive and argument modes Interactive Mode: C:> tokenvator.exe…
View More Tokenvator v2.1.1 releases: A tool to elevate privilege with Windows Tokens