LuemmelSec / WinPwn
Automation for internal Windows Penetrationtest / AD-Security
☆17Updated last year
Related projects: ⓘ
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆80Updated last year
- Red Teaming & Active Directory Cheat Sheet.☆39Updated last year
- Linux Post-Exploitation tools wrapper☆20Updated last year
- Azur3Alph4 is a PowerShell module that automates red-team tasks for ops on objective. This module situates in a post-breach (RCE achieved…☆62Updated 3 years ago
- blame Huy☆42Updated 3 years ago
- User enumeration and password spraying tool for testing Azure AD☆67Updated 2 years ago
- Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv☆38Updated last year
- Python tool to find vulnerable AD object and generating csv report☆26Updated 2 years ago
- Simple PoC from Malicious Payload Injection from Windows Event Log Entry☆26Updated 2 years ago
- A module for CME that spiders across a domain.☆35Updated 2 years ago
- ☆42Updated 2 months ago
- Federated Office365 user enumeration based on correlated response trend analysis☆47Updated 2 years ago
- Automation of Active Directory penetration testing tasks on top of BloodHound CE☆29Updated last year
- ☆79Updated last year
- BloodCheck enables Red and Blue Teams to manage multiple Neo4j databases and run Cypher queries against a BloodHound dataset.☆17Updated 3 years ago
- Extract payload URLs from Follina (CVE-2022-30190) docx and rtf files☆30Updated 2 years ago
- SMBMap is a handy SMB enumeration tool - here with Kerberos support☆74Updated 2 years ago
- Analyzing AD domains for security risks related to user accounts☆63Updated last year
- ☆39Updated this week
- PowerSploit - A PowerShell Post-Exploitation Framework☆41Updated last year
- ☆50Updated last year
- ☆45Updated this week
- A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if …☆80Updated 3 months ago
- A list of commands, tools and notes about enumerating and exploiting Active Directory and how to defend against these attacks☆20Updated 3 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆53Updated last year
- ☆41Updated 2 years ago
- ☆31Updated this week
- Discord C2 Profile for Mythic☆23Updated 5 months ago
- ☆36Updated 4 months ago
- RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.☆55Updated 2 years ago