markuta / bw-dump
A proof-of-concept for (CVE-2023-38840) that extracts plaintext master passwords from a locked Bitwarden vault.
☆37Updated 6 months ago
Related projects: ⓘ
- Scraping Kit is made up of several tools for scraping services for keywords, useful for initial enumeration of Domain Controllers or if y…☆95Updated last year
- A small utility to translate NTDS.dit files to SQLite format.☆60Updated 11 months ago
- Spoofing desktop login applications with WinForms and WPF☆169Updated 7 months ago
- Python utility that generates "imageless" QR codes in various formats☆88Updated last month
- Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process☆63Updated 4 months ago
- Easy red team phishing with Puppeteer☆127Updated last year
- ☆131Updated 3 months ago
- A python script to automatically list vulnerable Windows ACEs/ACLs.☆42Updated 2 weeks ago
- Goscan is a fast TCP scanner I created while learning Golang.☆52Updated 2 years ago
- Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later☆88Updated last year
- A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.☆72Updated 3 months ago
- linikatz is a tool to attack AD on UNIX☆134Updated 11 months ago
- ☆34Updated 4 months ago
- A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.☆105Updated 4 months ago
- Automated exploitation of MSSQL servers at scale☆79Updated this week
- ☆57Updated this week
- All kinds of tiny shells☆59Updated last year
- ☆40Updated last year
- A Golang Discord C2 unlike any other. DCVC2 uses RTP packets over a voice channel to transmit all data leaving no operational traces in t…☆121Updated last year
- Red Team "Drop and Run" NAC (802.1x) Bypass☆66Updated last year
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆131Updated last month
- Scan your computer for known vulnerable and known malicious Windows drivers using loldrivers.io☆77Updated 7 months ago
- Fully automated windows credentials dumper, from SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine wit…☆66Updated 3 months ago
- Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit☆119Updated last month
- ☆90Updated last week
- Collection of one-liners to bypass User Account Control (UAC) in Windows. These techniques exploit certain behavior in Windows applicatio…☆83Updated 11 months ago
- An interactive shell to spoof some LOLBins command line☆179Updated 7 months ago
- ☆50Updated 7 months ago
- Just some random Red Team Scripts that can be useful☆131Updated 2 months ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆79Updated 2 months ago