Proof of concept for Kerberos Armoring abuse.
☆81Dec 12, 2025Updated 2 months ago
Alternatives and similar repositories for BreakFAST
Users that are interested in BreakFAST are comparing it to the libraries listed below
Sorting:
- A Windows tool that converts LDIF files to BloodHound CE☆27Dec 20, 2025Updated 2 months ago
- Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover☆86Oct 20, 2025Updated 4 months ago
- PowerShell collector for adding SCCM attack paths to BloodHound with OpenGraph☆75Feb 27, 2026Updated last week
- shellcode transformation tool for YARA evasion☆55Dec 17, 2025Updated 2 months ago
- ☆58Dec 10, 2025Updated 2 months ago
- A professional Red Team / Pentest tool for assessing the external perimeter of a company in a complete "black box" mode (zero knowledge, …☆29Feb 15, 2026Updated 2 weeks ago
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆37Oct 1, 2025Updated 5 months ago
- Tamper Active Directory user attributes to collect their hashes with MS-SNTP☆64Jan 21, 2025Updated last year
- sigreturn-oriented programming (SROP) based sleep obfuscation poc for Linux☆66Dec 15, 2025Updated 2 months ago
- A tool to easily perform GitHub Device Code Phishing on red team engagements☆87Feb 9, 2026Updated 3 weeks ago
- Cobalt Strike UDC2 implementation that provides an Slack C2 channel☆63Jan 5, 2026Updated 2 months ago
- Dump processes over WMI with MSFT_MTProcess☆84Feb 13, 2026Updated 3 weeks ago
- One WSL BOF to rule them all☆159Jan 14, 2026Updated last month
- Active Directory information dumper via ADWS for evasion purposes.☆179Feb 23, 2026Updated last week
- Bloodhound python Ingestor using ADWS☆32Feb 4, 2026Updated last month
- Backend development stack for agents☆29Jul 30, 2025Updated 7 months ago
- Windows Session Hijacking via COM☆339Dec 13, 2025Updated 2 months ago
- Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)☆130Oct 23, 2025Updated 4 months ago
- A Powerful XSS,RXSS,BXSS finding tool☆31Oct 29, 2025Updated 4 months ago
- poc for cve-2025-53772☆46Dec 10, 2025Updated 2 months ago
- Execute commands, in/exfiltrate files using your custom RPC Server☆65Jan 13, 2026Updated last month
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆286Jan 12, 2026Updated last month
- A tool to remotely detect unusual sessions opened on windows machines using RPC☆119Jun 10, 2025Updated 8 months ago
- Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM☆64Dec 25, 2025Updated 2 months ago
- Minimalistic HTTP(S) client for the NT kernel☆62Dec 1, 2025Updated 3 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆167Oct 21, 2025Updated 4 months ago
- EDRStartupHinder: A red team tool to prevent Antivirus and EDR from running.☆187Jan 11, 2026Updated last month
- CVE-2025-64155: Fortinet FortiSIEM Argument Injection to Remote Code Execution☆31Jan 13, 2026Updated last month
- ☆20Sep 6, 2025Updated 6 months ago
- Enumerate Domain Users Without Authentication☆282Apr 22, 2025Updated 10 months ago
- Impersonate Windows tokens in Nim☆23Aug 4, 2025Updated 7 months ago
- Supporting PoCs and scripts for my talk "OverLAPS: Overriding LAPS Logic"☆22Oct 12, 2025Updated 4 months ago
- Token impersonation in PowerShell to execute under the context of another user.☆24Oct 14, 2025Updated 4 months ago
- ☆13Oct 21, 2023Updated 2 years ago
- Azure apim mini proxy☆45Feb 16, 2026Updated 2 weeks ago
- CVE-2025-59501 POC code☆25Nov 20, 2025Updated 3 months ago
- An alternative to the builtin clipboard feature in Cobalt Strike that adds the capability to enable/disable and dump the clipboard histor…☆103Jan 9, 2026Updated last month
- Secretsdump C# version only supporting local (live) operation☆55Apr 20, 2025Updated 10 months ago
- Repository for Ludus french templates☆21Mar 1, 2026Updated last week