Nishang Nishang is a framework and collection of scripts and payloads which enables usage of PowerShell for offensive security, penetration testing and red teaming. Nishang is useful during all phases...
Freedom Fighting Mode (FFM) FFM is a hacking harness that you can use during the post-exploitation phase of a red-teaming engagement. The idea of the tool was derived from a 2007...
Information Gathering / Network PenTest / Post Exploitation
by do son · Published October 30, 2018 · Last modified November 4, 2024
ADRecon: Active Directory Recon ADRecon is a tool which extracts and combines various artifacts (as highlighted below) out of an AD environment. The information can be presented in a specially...
Maintaining Access / Post Exploitation
by do son · Published October 27, 2018 · Last modified November 4, 2024
WMImplant A PowerShell based tool that leverages WMI to both perform actions against targeted machines, but also as the C2 channel for issuing commands and receiving results. It will likely require...
pspy – unprivileged Linux process snooping pspy is a command-line tool designed to snoop on processes without the need for root permissions. It allows you to see commands run by...
PXEnum Post eXploitation Enumeration script for Linux. Checks Username Hostname Home User ID Groups Kernel Release Version Architecture OS CPU GPU Architecture Online Memory Offline Memory BIOS Vendor BIOS Version...
Bashark Bashark aids pentesters and security researchers during the post-exploitation phase of security audits. Features Single Bash script Lightweight and fast Multi-platform: Unix, OSX, Solaris etc. No external dependencies Immune...
LogRM LogRM is a post-exploitation powershell script which it uses windows event logs to gather information about the internal network in a penetration testing engagement. It is not only useful...
Network PenTest / Post Exploitation
by do son · Published October 2, 2018 · Last modified October 10, 2021
ACLight A script for an advanced discovery of Privileged Accounts – includes Shadow Admins. The tool was published as part of the “Shadow Admins” research – more details on “Shadow...
Exploitation / Network PenTest / Post Exploitation / Web Information Gathering / WebApp PenTest
by do son · Published September 28, 2018 · Last modified November 4, 2024
tactical-exploitation I’ve always been a big proponent of a tactical approach to penetration testing that does not focus on exploiting known software vulnerabilities but relies on old-school techniques such as...
Network PenTest / Post Exploitation / Vulnerability Analysis
by do son · Published September 20, 2018 · Last modified November 4, 2024
MIDA-Multitool – Bash script purposed for system enumeration, vulnerability identification, and privilege escalation.MIDA Multitool draws functionality from several of my previous scripts namely SysEnum and RootHelper and is in many regards RootHelpers successor. Besides functionality...
ibombshell – Dynamic Remote Shell ibombshell is a tool written in Powershell that allows you to have a prompt at any time with post-exploitation functionalities (and in some cases exploitation). It...
Information Gathering / Post Exploitation
by do son · Published September 10, 2018 · Last modified September 11, 2018
Synopsis This script was created to provide a full LDAP enumeration suite for objects stored in Active Directory. It allows for the enumeration of users, groups, domain, and computers from...
Invoke-TheHash contains PowerShell functions for performing pass the hash WMI and SMB tasks. WMI and SMB services are accessed through .NET TCPClient connections. Authentication is performed by passing an NTLM...
PowerShdll Run PowerShell with dlls only. Does not require access to powershell.exe as it uses powershell automation dlls. Does not require access to powershell.exe as it uses powershell automation dlls....
Support Securityonline.info site. Thanks!
