Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but for security research and penetration testing! π«
β173Jun 19, 2026Updated 2 weeks ago
Alternatives and similar repositories for Wonka
Users that are interested in Wonka are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A Windows tool that converts LDIF files to BloodHound CEβ32Dec 20, 2025Updated 6 months ago
- a small script to collect information from a management pointβ37Jan 19, 2026Updated 5 months ago
- PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk readsβ256Oct 30, 2025Updated 8 months ago
- A professional Red Team / Pentest tool for assessing the external perimeter of a company in a complete "black box" mode (zero knowledge, β¦β29Feb 15, 2026Updated 4 months ago
- A tool for coercing and relaying Kerberos authentication over DCOM and RPC.β150Jul 17, 2025Updated 11 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits β’ AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- The DCERPC only printerbug.py versionβ220Oct 30, 2025Updated 8 months ago
- A simple tool to identify WDS servers in Active Directoryβ32Aug 25, 2025Updated 10 months ago
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.β194May 23, 2026Updated last month
- Step-by-step documentation on how to decrypt SCCM database secrets offlineβ50Oct 20, 2025Updated 8 months ago
- PowerShell tool that shows how to read and write NTLM OWF values via samlib.dll.β74Oct 22, 2025Updated 8 months ago
- A multi-platform CI/CD vulnerability detection and attack automation tool for identifying security weaknesses in pipeline configurations.β163Jun 22, 2026Updated last week
- PowerShell-based utility for mapping byte offsets to source code using hex and ASCII context for detection research and red team tooling.β35Jun 24, 2026Updated last week
- Bypass Credential Guard by patching WDigest.dll using only NTAPI functionsβ270Apr 8, 2025Updated last year
- A tool to easily perform GitHub Device Code Phishing on red team engagementsβ97Feb 9, 2026Updated 4 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer β’ AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easilyβ306May 11, 2026Updated last month
- Windows protocol library, including SMB and RPC implementations, among others.β798Jun 11, 2026Updated 3 weeks ago
- Using Chromium-based browsers as a proxy for C2 traffic.β154Dec 6, 2025Updated 6 months ago
- Python tool to automatically perform SPN-less RBCD attacks.β131Jan 7, 2026Updated 5 months ago
- Abusing Azure services over C2β376Jan 20, 2026Updated 5 months ago
- Azure Post Exploitation Frameworkβ248Oct 27, 2025Updated 8 months ago
- Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)β144Oct 23, 2025Updated 8 months ago
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA β¦β169Nov 2, 2025Updated 8 months ago
- Elastic Security Labs' malware analysis and reverse engineering libraryβ56Mar 10, 2026Updated 3 months ago
- GPUs on demand by Runpod - Special Offer Available β’ AdRun AI, ML, and HPC workloads on powerful cloud GPUsβwithout limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Windows Access token manipulation tool made in C#β25Aug 24, 2025Updated 10 months ago
- PowerShell SharePoint extraction + auditing tool for red/blue/purple teams. Enumerates all SharePoint sites/drives a user can access via β¦β167Jan 25, 2026Updated 5 months ago
- Python and BOF utilites to the determine EPA enforcement levels of popular NTLM relay targets from the offensive perspectiveβ179May 31, 2026Updated last month
- Proof of concept for Kerberos Armoring abuse.β86Dec 12, 2025Updated 6 months ago
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.β265Feb 21, 2025Updated last year
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with itβ135Aug 23, 2025Updated 10 months ago
- A C# tool for extracting information from SCCM PXE boot media.β57May 21, 2026Updated last month
- PowerShell tool for auditing Microsoft Entra ID Conditional Access policies and MFA complianceβ45Aug 2, 2025Updated 11 months ago
- Organizational asset discovery tool with 20+ plugins covering certificate transparency, passive DNS, and all 5 Regional Internet Registriβ¦β81Jun 26, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer β’ AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Red Team tools containerizedβ78May 12, 2026Updated last month
- β14Mar 24, 2026Updated 3 months ago
- Modified version of PEAS client for offensive operationsβ51May 18, 2026Updated last month
- template for developing custom C2 channels for Cobalt Strike using IAT hooks applied by a reflective loader.β106Jan 10, 2026Updated 5 months ago
- ForsHopsβ60Mar 25, 2025Updated last year
- Beacon Object File for Cobalt Strike that executes .NET assemblies in beacon with evasion techniques.β196Dec 23, 2025Updated 6 months ago
- A PICO for Crystal Palace that implements CLR hosting to execute a .NET assembly in memory.β139Jan 28, 2026Updated 5 months ago