ManuelBerrueta / BST
π΄ββ οΈ BST is an ever-evolving collection of π tools to help in security and administration tasks π
β12Updated this week
Related projects β
Alternatives and complementary repositories for BST
- CIS Benchmark testing of Windows SIEM configurationβ43Updated last year
- Python tool to find vulnerable AD object and generating csv reportβ26Updated 2 years ago
- Active DIrectory Lab for Pentesting Practiceβ24Updated 2 years ago
- β29Updated last year
- π©οΈ Collection of BloodHound queries for Azureβ44Updated 3 months ago
- PDump is a project for dumping leaked credentials from DEHASHEDβ15Updated 10 months ago
- β25Updated last year
- This is a simulation of attack by Fancy Bear group (APT28) targeting high-ranking government officials Western Asia and Eastern Europeβ30Updated 5 months ago
- Automation of Active Directory penetration testing tasks on top of BloodHound CEβ30Updated last year
- Providing Azure pipelines to create an infrastructure and run Atomic tests.β50Updated last year
- β51Updated last year
- Brute Ratel LDAP filtering and sorting tool. Easily take BR log output and pull hostnames for ease of use with other red team tooling. Suβ¦β37Updated last year
- Simple Shellcode Runner in Rust Languageβ17Updated 11 months ago
- Automatically deploy Nemesisβ19Updated 5 months ago
- Items related to the RedELK workshop given at security conferencesβ27Updated last year
- Abusing Remote Windows SMB Shares for Fun and Pen Testingβ14Updated last year
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, β¦β16Updated 2 years ago
- Analyzing AD domains for security risks related to user accountsβ63Updated 2 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).β53Updated 2 years ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Servβ¦β25Updated last year
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"β46Updated 2 years ago
- AutoPoC Generator HoneyPoCβ32Updated 4 months ago
- urlyzer is a URL parsing analysis tool.β21Updated 3 months ago
- β43Updated 4 months ago
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous toolsβ85Updated last year
- Deathstar is an Empire plugin that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common β¦β16Updated 10 months ago
- Discord C2 Profile for Mythicβ24Updated 7 months ago
- Ransomware Simulator for testing Blue Team Detectionsβ35Updated 2 years ago
- Automatically spider the result set of a Censys/Shodan search and download all files where the file name or folder path matches a regex.β27Updated last year