Coalfire-Research / DeathMetal
Red team & penetration testing tools to exploit the capabilities of Intel AMT
☆257Updated 3 years ago
Alternatives and similar repositories for DeathMetal:
Users that are interested in DeathMetal are comparing it to the libraries listed below
- Feed the tool a .nessus file and it will automatically get you MSF shell☆235Updated 2 years ago
- Pypykatz server☆125Updated 6 years ago
- A collection of Ansible Playbooks that configure Kali to use Fish & install a number of tools☆161Updated 5 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆393Updated 4 years ago
- A framework for stealthy domain reconnaissance☆300Updated 3 years ago
- Forward local or remote tcp ports through SMB pipes.☆294Updated 4 years ago
- SMB MiTM tool with a focus on attacking clients through file content swapping, lnk swapping, as well as compromising any data passed over…☆385Updated 6 years ago
- Orc is a post-exploitation framework for Linux written in Bash☆395Updated 5 years ago
- LyncSniper: A tool for penetration testing Skype for Business and Lync deployments☆305Updated 4 years ago
- Provides In-memory compilation and reflective loading of C# apps for AV evasion.☆368Updated last year
- For all your network pentesting needs☆152Updated 8 months ago
- A PowerShell example of the Windows zero day priv esc☆324Updated 6 years ago
- Remote Recon and Collection☆448Updated 7 years ago
- A fully functional DanderSpritz lab in 2 commands☆424Updated 5 years ago
- Bloodhound Attack Path Automation in CobaltStrike☆312Updated 4 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆182Updated 5 years ago
- Sheepl : Creating realistic user behaviour for supporting tradecraft development within lab environments☆395Updated last year
- Proofs of Concept. Just fucking around.☆194Updated 2 years ago
- This is a bash script to bypass 802.1x NAC☆95Updated 2 years ago
- You're a #pentester and you totally pwn that linux box, congrats! Now what? You can launch gimmecredz.sh which will try to extract all p…☆169Updated 5 years ago
- Various Cheat Sheets☆181Updated 3 years ago
- locate and attack Lync/Skype for Business☆335Updated 5 months ago
- Powershell script to exfiltrate large files quickly and securely☆122Updated 2 years ago
- SprayWMI is an easy way to get mass shells on systems that support WMI. Much more effective than PSEXEC as it does not leave remnants on …☆253Updated 9 years ago
- nnposter's alternate fingerprint dataset for Nmap script http-default-accounts☆246Updated last month
- Check for valid credentials across a network over SMB☆259Updated last year
- NebulousAD automated credential auditing tool.☆154Updated 4 years ago
- ☆281Updated 7 years ago
- Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)☆66Updated 3 years ago
- (extensible) Data Exfiltration Toolkit (DET)☆159Updated 5 years ago