nccgroup / SteppingStones

Related projects ⓘ

Alternatives and complementary repositories for SteppingStones

• dazzyddos / HSC24RedTeamInfra
  Slides and Codes used for the workshop Red Team Infrastructure Automation
  ☆174Updated 7 months ago
• Malcrove / SeamlessPass
  A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
  ☆129Updated 2 months ago
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆265Updated last week
• mlcsec / Graphpython
  Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
  ☆133Updated 3 months ago
• trustedsec / specula
  ☆180Updated last month
• xpn / OktaPostExToolkit
  ☆170Updated last month
• Yaxxine7 / ASRepCatcher
  Make everyone in your VLAN ASRep roastable
  ☆137Updated 5 months ago
• 0xBallpoint / LOAD
  Lord Of Active Directory - automatic vulnerable active directory on AWS
  ☆131Updated last year
• puzzlepeaches / awesome-password-spraying
  Everything and anything related to password spraying
  ☆126Updated 6 months ago
• synacktiv / Mindmaps
  Azure mindmap for penetration tests
  ☆161Updated last year
• ad0nis / ntlm_relay_gat
  ☆143Updated 8 months ago
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆143Updated 3 weeks ago
• RedTeamOperations / Red-Infra-Craft
  RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…
  ☆89Updated this week
• werdhaihai / AtlasReaper
  A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.
  ☆246Updated last year
• ThePorgs / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆268Updated 3 weeks ago
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆156Updated 3 weeks ago
• amjcyber / pwnlook
  An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…
  ☆133Updated last month
• garrettfoster13 / pre2k
  ☆279Updated 3 weeks ago
• zolderio / AITMWorker
  Proof of concept: using a Cloudflare worker for AITM attacks
  ☆91Updated 8 months ago
• SecuraBV / Timeroast
  Timeroasting scripts by Tom Tervoort
  ☆182Updated last year
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆230Updated 3 weeks ago
• Drew-Sec / EvilSlackbot
  A Slack bot phishing framework for Red Teaming exercises
  ☆159Updated 6 months ago
• Hacker-Hermanos / C2_INFRA_WORKSHOP_DEFCON32_RED_TEAM_VILLAGE
  C2 Infrastructure Automation
  ☆86Updated last week
• badsectorlabs / sccm-http-looter
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆163Updated last month
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆134Updated last month
• Tw1sm / spraycharles
  Low and slow password spraying tool, designed to spray on an interval over a long period of time
  ☆188Updated last month
• Orange-Cyberdefense / LinikatzV2
  linikatz is a tool to attack AD on UNIX
  ☆138Updated last year
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆196Updated last week
• HernanRodriguez1 / MimikatzFUD
  ☆95Updated 2 years ago
• login-securite / conpass
  Continuous password spraying tool
  ☆117Updated this week