MFASweep: checking if MFA is enabled on multiple Microsoft Services
MFASweep MFASweep is a PowerShell script that attempts to log in to various Microsoft services using a provided set of credentials and will attempt to identify if MFA is enabled....
Category: Penetration Testing
SharpFtpC2: Streamlined FTP-Driven Command and Control Conduit
SharpFtpC2 SharpFtpC2 is a small, experimental project aimed at exploring the possibility of using FTP(S) for relaying commands and responses between two remote computers. It employs the FTP protocol as...
SharpToken: tool for exploiting Token leaks
SharpToken During red team lateral movement, we often need to steal the permissions of other users. Under the defense of modern EDR, it is difficult for us to use Mimikatz...
HBSQLI: Automated Tool for Testing Header Based Blind SQL Injection
HBSQLI: Automated Tester For Header-Based Blind SQL Injection HBSQLI is an automated command-line tool for performing Header Based Blind SQL injection attacks on web applications. It automates the process of...
Elevation Station v1.6 releases: privilege escalation tool
Elevation Station Stealing and Duplicating SYSTEM tokens for fun & profit! We duplicate things, make twin copies, and then ride away. You have used Metasploit’s getsystem, correct? Well, here’s a...
GCPGoat: A Damn Vulnerable GCP Infrastructure
GCPGoat: A Damn Vulnerable GCP Infrastructure Compromising an organization’s cloud infrastructure is like sitting on a gold mine for attackers. And sometimes, a simple misconfiguration or a vulnerability in web...
deepsecrets v1.1.2 releases: a better tool for secret scanning
DeepSecrets – a better tool for secret scanning Yet another tool – why? Existing tools don’t really “understand” code. Instead, they mostly parse texts. DeepSecrets expands classic regex-search approaches with...
hiphp: create a BackDoor to control PHP-based sites
What is Hiphp? The HIPHP BackDoor is an open-source tool that allows for remote control of websites utilizing the PHP programming language via the HTTP/HTTPS protocol. By utilizing the POST/GET...
OWASP Vulnerability Management Center: Scalable, Open Source and Free Vulnerability Management Platform
OWASP Vulnerability Management Center VMC (OWASP Vulnerability Management Center) is a platform designed to make vulnerability governance easier for any security specialists and SOC teams within their organisations. VMC is a...
PythonMemoryModule: load dll and unmanaged exe entirely from memory
PythonMemoryModule pure-python implementation of MemoryModule technique to load a dll or unmanaged exe entirely from memory PythonMemoryModule is a Python ctypes porting of the MemoryModule technique originally published by Joachim Bauch. It can...
Tokenizer: Kernel Mode Driver for Elevating Process Privileges
Tokenizer Tokenizer is a kernel mode driver project that allows the replacement of a process token in EPROCESS with a system token, effectively elevating the privileges of the process. The...
Entry Point Injection: Process injection through entry points hijacking
EPI EPI (Entry Point Injection) is a tool that leverages a new threadless process injection technique that relies on hijacking loaded dll’s entry points. To achieve this goal, EPI patches the...
LightsOut: Generate an obfuscated DLL that will disable AMSI & ETW
LightsOut LightsOut will generate an obfuscated DLL that will disable AMSI & ETW while trying to evade AV. This is done by randomizing all WinAPI functions used, xor encoding strings,...
Commander: command and control (C2) server
Commander Commander is a command and control framework (C2) written in Python, Flask, and SQLite. It comes with two agents written in Python and C. Features Fully encrypted communication (TLS)...
KittyStager: stage 0 C2 comprising an API, client, and malware
KittyStager KittyStager is a stage 0 C2 comprising an API, client, and malware. The API is responsible for delivering basic tasks and shellcodes to be injected into memory by the...
