Leveraging GitHub Actions to rotate IP addresses during password spraying attacks to bypass IP-Based blocking
☆152May 23, 2024Updated 2 years ago
Alternatives and similar repositories for git-rotate
Users that are interested in git-rotate are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Scripts to interact with Microsoft Graph APIs☆46Nov 7, 2024Updated last year
- ADFS Brute-Force Login Script☆11Mar 19, 2024Updated 2 years ago
- A framework for OAuth 2.0 device code authentication grant flow phishing☆47May 31, 2023Updated 3 years ago
- Abusing Azure services over C2☆376Jan 20, 2026Updated 5 months ago
- Azure Post Exploitation Framework☆248Oct 27, 2025Updated 8 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Abuse leaked token handles.☆136Dec 14, 2023Updated 2 years ago
- A simple POC to expose Mythic as a MCP server☆74Mar 20, 2025Updated last year
- LinkedIn recon the easy way☆110Jul 3, 2025Updated last year
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆134Oct 4, 2024Updated last year
- ☆222Mar 26, 2024Updated 2 years ago
- "Service-less" driver loading☆189Nov 28, 2024Updated last year
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely☆383Dec 13, 2024Updated last year
- Slides and Codes used for the workshop Red Team Infrastructure Automation☆193Apr 14, 2024Updated 2 years ago
- BypassIT is a framework for covert malware delivery and post-exploitation using AutoIT for red / blue team self assessment.☆44Jul 6, 2025Updated 11 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Stage 0☆170Dec 18, 2024Updated last year
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆152Feb 10, 2025Updated last year
- A Python POC for CRED1 over SOCKS5☆172Oct 5, 2024Updated last year
- A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.☆80Jun 6, 2024Updated 2 years ago
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆361Nov 19, 2024Updated last year
- ☆52Jun 12, 2026Updated 3 weeks ago
- TokenCert☆105Nov 15, 2024Updated last year
- PoC Exploit for CVE-2023-35803 Unauthenticated Buffer Overflow in Aerohive HiveOS/Extreme Networks IQ Engine☆23Jul 12, 2023Updated 2 years ago
- Hooked create process injection for meterpreter☆23Jun 16, 2021Updated 5 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- A Mythic Agent written in PIC C.☆207Feb 4, 2025Updated last year
- ☆200Nov 21, 2024Updated last year
- Spoofing desktop login applications with WinForms and WPF☆179Feb 19, 2024Updated 2 years ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆651May 8, 2025Updated last year
- Use ESC1 to perform a makeshift DCSync and dump hashes☆211Nov 2, 2023Updated 2 years ago
- Leak NTLM via Website tab in teams via MS Office☆79Mar 28, 2024Updated 2 years ago
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆572Jun 5, 2023Updated 3 years ago
- ☆309Mar 15, 2025Updated last year
- Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…☆312Mar 28, 2026Updated 3 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆201Mar 28, 2025Updated last year
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆74May 1, 2024Updated 2 years ago
- CaptainCredz is a modular and discreet password-spraying tool.☆138Jun 24, 2026Updated last week
- A proof of concept demonstrating the DLL-load proxying using undocumented Syscalls.☆412Jan 11, 2026Updated 5 months ago
- Blocks EDR Telemetry by performing Person-in-the-Middle attack where network filtering is applied using iptables. The blocked destination…☆139Jul 23, 2024Updated last year
- Extract registry and NTDS secrets from local or remote disk images☆46Mar 15, 2025Updated last year
- Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)☆70Mar 20, 2024Updated 2 years ago