moloch54 / b4blood
Finds Domain Controller on a network, enumerates users, AS-REP Roasting and hash cracking, bruteforces password, dumps AD users, DRSUAPI, scans SMB/NFS shares for passwords, scans for remote accesses, dumps NTDS.dit.
☆18Updated last year
Related projects ⓘ
Alternatives and complementary repositories for b4blood
- Simple Python script to sort nuclei scans by severity and URL☆29Updated last year
- A straightforward tool for exploiting SMTP Smuggling vulnerabilities.☆15Updated 4 months ago
- OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.☆26Updated last year
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆17Updated last year
- Wounty is a simple web enumeration script that makes use of other popular tools to automate the early stages of recognition in Bug Bounty…☆14Updated 2 years ago
- This repository presents a proof-of-concept of CVE-2023-22527☆13Updated 10 months ago
- Saves pages to Wayback machine☆13Updated 2 years ago
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆20Updated 2 years ago
- recon.cloud is website that scans AWS, Azure and GCP public cloud footprint this GO tool only utilize its API for getting result to termi…☆23Updated last year
- Public repo of Nuclei scanner templates.☆18Updated last year
- Ffuf output browser☆37Updated last year
- H&E- Burp Highlighter and Extractor☆18Updated last year
- Tomcat backdoor based on CS blog☆27Updated last year
- A selection of rebuilt and from scratch exploits, scripts and ideas that can be used in red-teaming scenarios.☆6Updated 10 months ago
- Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC☆43Updated 9 months ago
- Reversing Citrix Gateway for XSS☆14Updated last year
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆59Updated 11 months ago
- ☆51Updated last year
- A security assessment tool for Hitachi Vantara's Pentaho Business Analytics platform.☆14Updated 3 years ago
- HTTP requests of FrontPage expolit☆24Updated 10 years ago
- Automated compromise detection of the world's most popular packages☆15Updated last year
- A script used to query the dehashed API and filter for more useful results☆14Updated 3 years ago
- FireProx written in Go☆17Updated 7 months ago