pypykatz_wasm: pypykats in your browser
pypykatz_wasm The pypykatz project’s LSASS and Registry HIVE parsing capability is now in your web browser! How does it work There is an awesome project called pyodide which aims to have a...
Category: Post Exploitation
Orc: post-exploitation framework for Linux
Orc is a simple post-exploitation for Linux written in bash It takes the form of an ENV script, so load orc into a shell by running ENV=o.rc sh -i (it...
adconnectdump: Dump Azure AD Connect credentials
Azure AD Connect password extraction This toolkit offers several ways to extract and decrypt stored Azure AD and Active Directory credentials from Azure AD Connect servers. These credentials have high...
Watson: Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities
Watson Watson is a .NET tool designed to enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities. My focus is on the latest priv esc’s for the mainstream...
dfex: DNS File EXfiltration
DNS File EXfiltration Data exfiltration is a common technique used for post-exploitation, DNS is one of the most common protocols through firewalls. We take the opportunity to build a unique...
postshell: Post Exploitation Bind/Backconnect Shell
PostShell PostShell is a post-exploitation shell that includes both a bind and a back connect shell. It creates a fully interactive TTY which allows for job control. The stub size...
[Defcon Tool] CIRCO v1.6 releases: Cisco Implant Raspberry Controlled Operations
CIRCO Cisco Implant Raspberry Controlled Operations Designed under Raspberry Pi and aimed for Red Team Ops, we take advantage of “Sec/Net/Dev/Ops” enterprise tools to capture network credentials in a stealth...
juicy potato: Local Privilege Escalation tool
Juicy Potato (abusing the golden privileges) A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM JuicyPotato allows...
RACE: PowerShell module for executing ACL attacks against Windows targets
RACE RACE is a PowerShell module for executing ACL attacks against Windows targets and Active Directory. RACE can be used for persistence and on-demand privilege escalation on Windows machines. Functions...
wmiServSessEnum: uses WMI queries to enumerate active sessions and accounts
wmiServSessEnum multithreaded .net tool that uses WMI queries to enumerate active user sessions and accounts configured to run services (even those that are stopped and disabled) on remote systems. WmiServSessEnum...
AADInternals v0.6.5 releases: PowerShell module for administering Azure AD and Office 365
AADInternals AAD Internals is a PowerShell module where I’ve tried to put all the knowledge I’ve gained during the years spent with Office 365 and Azure AD. It is a...
SILENTTRINITY v0.4.6 releases: An asynchronous, collaborative post-exploitation agent
SILENTTRINITY SILENTTRINITY is modern, asynchronous, multiplayer & multiserver C2/post-exploitation framework powered by Python 3 and .NETs DLR. Some of the main features that distinguish SILENTTRINITY are: Multi-User & Multi-Server – Supports...
Postenum v1.2 releases: basic/advanced privilege escalation techniques
Postenum is a clean, nice, and easy tool for basic/advanced privilege escalation vectors/techniques. Postenum tool is intended to be executed locally on a Linux box. Download git clone https://github.com/mbahadou/postenum.git Use...
IPv6teal: Stealthy data exfiltration via IPv6 covert channel
IPv6teal IPv6teal is a Python 3 tool to stealthily exfiltrate data from an internal network using a covert channel built on top of the IPv6 header Flow label field. It is made of...
Inveigh v2.0.10 releases: .NET IPv4/IPv6 machine-in-the-middle tool
Inveigh Inveigh is a cross-platform .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers. This repo contains the primary C# version as well as the legacy PowerShell version. Overview Inveigh conducts spoofing...
