Stars
⬛️ CLI tool for saving complete web pages as a single HTML file
The "Monash Enterprise Access Model" (MEAM) is a model for tiering Active Directory that builds heavily on the Microsoft Enterprise Access Model.
wmiexec2.0 is the same wmiexec that everyone knows and loves (debatable). This 2.0 version is obfuscated to avoid well known signatures from various AV engines. It also has a handful of additional …
Dump lsass using only NTAPIS running 3 programs to create 3 JSON and 1 ZIP file... and generate the Minidump later!
Leak of any user's NetNTLM hash. Fixed in KB5040434
Dump Kerberos tickets from the KCM database of SSSD
Fennerr / PMapper
Forked from nccgroup/PMapperA tool for quickly evaluating IAM permissions in AWS.
Find exploits in local and online databases instantly
SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
Python utility that generates "imageless" QR codes in various formats
A command and control framework written in rust.
AWS Attack Path Management Tool - Walking on the Moon
A tool uses Windows Filtering Platform (WFP) to block Endpoint Detection and Response (EDR) agents from reporting security events to the server.
🔧 .files, including ~/.macos — sensible hacker defaults for macOS
smbclient-ng, a fast and user friendly way to interact with SMB shares.
mosesrenegade / PMapper
Forked from nccgroup/PMapperA tool for quickly evaluating IAM permissions in AWS.
M365/Azure adversary simulation tool designed to simulate adversary techniques and generate attack telemetry.
HTTP(s) Screenshots for Pen Testers Who Value Their Time
Enumerate Microsoft Entra ID (Azure AD) fast
A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure points in Mircrosoft Services.
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive and hardening guidance.