deletehead / the_hax
Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!
☆26Updated last year
Related projects: ⓘ
- Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.☆19Updated 3 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 3 years ago
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago
- ☆16Updated 3 years ago
- A simple program to query nmap xml files in the terminal.☆26Updated 4 years ago
- ☆15Updated 10 months ago
- Azure pentesting reference for Altered Security Lab☆24Updated 2 years ago
- Tradecraft Development Fundamentals☆40Updated 3 years ago
- ☆30Updated 4 years ago
- ☆12Updated last year
- A pair of scripts to import session and local group information that has been collected from alternate data sources into BloodHound's Neo…☆19Updated 2 years ago
- ☆17Updated last year
- A Couple of Python Scripts Leveraging MS365's GraphAPI to Send Custom Calendar Events / Emails from Cheap O365 Accounts☆17Updated 5 months ago
- ☆16Updated 3 years ago
- Modified version of PEAS client for offensive operations☆38Updated last year
- A cloud automation system for Red Teams based on Terraform and Ansible☆24Updated 3 years ago
- ansible roles to download and install empire (BC-Security),deathstar(byt3bl33der) and starkiller (BC-Security)☆23Updated 2 years ago
- ☆10Updated this week
- Socks proxy server using powershell. Supports local and reverse connections for pivoting.☆11Updated 3 years ago
- Find Inbound Email Domains☆15Updated 8 months ago
- Ruby script that calls an almost interactive shell via WinRM (TCP/5985) on an Windows machine, relaying on a valid Kerberos ticket. (Very…☆16Updated 5 years ago
- ☆14Updated this week
- ☆13Updated 5 years ago
- (kinda) Malicious Outlook Reader☆17Updated 3 years ago
- ☆22Updated 3 years ago
- Some Hashcat Rules for 2020 and beyond. Contributions encouraged!☆24Updated 2 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Updated 2 years ago
- Tooling I utilized within the PEN300 training labs☆4Updated last year
- Python Script for SAML2 Authentication Passwordspray☆37Updated last year
- Convert ldapdomaindump to Bloodhound☆76Updated 9 months ago