c6fc / npk
A mostly-serverless distributed hash cracking platform
☆525Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for npk
- Username enumeration and password spraying tool aimed at Microsoft O365.☆770Updated 2 weeks ago
- large hashcat rulesets generated from real-world compromised passwords☆390Updated 3 years ago
- TREVORspray is a modular password sprayer with threading, clever proxying, loot modules, and more!☆1,066Updated last week
- Infrastructure Automation☆321Updated 7 months ago
- Custom Query list for the Bloodhound GUI based off my cheatsheet☆750Updated last year
- Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling☆977Updated 3 months ago
- Rule for hashcat or john. Aiming to crack how people generate their password☆406Updated 2 months ago
- A revamped and updated version of my original OneRuleToRuleThemAll hashcat rule☆390Updated last month
- Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!☆1,019Updated 4 months ago
- A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the ac…☆912Updated 8 months ago
- A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)☆1,005Updated 5 months ago
- ☆617Updated last year
- onedrive user enumeration - pentest tool to enumerate valid o365 users☆623Updated last month
- Azure JWT Token Manipulation Toolset☆602Updated last year
- Powershell tool to automate Active Directory enumeration.☆1,009Updated 3 months ago
- Identify privilege escalation paths within and across different clouds☆668Updated 2 weeks ago
- Pentest Report Generator☆377Updated 2 months ago
- TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts☆1,062Updated 5 months ago
- Wordlists for creating statistically likely username lists for use in password attacks and security testing☆967Updated 2 years ago
- Dumping DPAPI credz remotely☆1,010Updated last week
- Python script that performs email address validation against Office 365 without submitting login attempts.☆324Updated 4 years ago
- Spoofy is a program that checks if a list of domains can be spoofed based on SPF and DMARC records.☆633Updated last month
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆195Updated 4 years ago
- A web front-end for password cracking and analytics☆360Updated this week
- Ansible playbook to deploy a phishing engagement in the cloud.☆216Updated 2 years ago
- Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to …☆733Updated last month
- Zero Infrastructure Password Cracking☆394Updated 2 months ago
- Mind maps / flow charts to help with privilege escalation on the OSCP.☆362Updated 3 years ago
- Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, …☆814Updated last week
- ☆412Updated 2 months ago