paranoidninja / Boomerang
Boomerang is a tool to expose multiple internal servers to web/cloud. Agent & Server are pretty stable and can be used in Red Team for Multiple levels of Pivoting and exposing multiple internal services to external/other networks
β220Updated 4 years ago
Alternatives and similar repositories for Boomerang:
Users that are interested in Boomerang are comparing it to the libraries listed below
- Red Team C2 Infrastructure built in AWS using Ansible!β225Updated 4 years ago
- Golang reverse/bind shell generatorβ229Updated 3 years ago
- Enumerate information from NTLM authentication enabled web endpoints πβ473Updated 8 months ago
- Password Hunter in Active Directoryβ197Updated 2 years ago
- A robust Red Team proxy written in Go.β159Updated 3 years ago
- Disposable and resilient red team infrastructure with Terraformβ264Updated 6 years ago
- HoneyCreds network credential injection to detect responder and other network poisoners.β216Updated 3 years ago
- β150Updated last year
- A polyglot payload generatorβ239Updated 2 years ago
- Multi platform toolkit for an interactive DNS shell commands exfiltration, by using DNS-Cat you will be able to execute system commands iβ¦β112Updated 2 years ago
- POC of SecureWorks' recent Azure Active Directory password brute-forcing vulnβ190Updated 3 years ago
- scan for NTLM directoriesβ354Updated 8 months ago
- A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.β439Updated last year
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilitiesβ203Updated 4 years ago
- easy-to-use payload hostingβ267Updated 2 years ago
- Terraform resources for building HTTP, DNS, phishing, and mail server red team infrastructureβ94Updated 5 years ago
- User enumeration with Microsoft Teams APIβ169Updated 3 years ago
- Basic C2 Serverβ188Updated 3 years ago
- Quick and dirty dynamic redirect.rules generatorβ156Updated 2 years ago
- Zuthaka is an open source application designed to assist red-teaming efforts, by simplifying the task of managing different APTs and otheβ¦β176Updated 2 years ago
- Web-Scale NoSQL Idempotent Cloud-Native Big-Data Serverless Plaintext Credential Searchβ184Updated last year
- D(COM) V(ulnerability) S(canner) AKA Devious swiss army knife - Lateral movement using DCOM Objectsβ207Updated 4 years ago
- Lookup for interesting stuff in SMB sharesβ149Updated last year
- A curated list of awesome BloodhoundAD resourcesβ231Updated 2 years ago
- automated password spraying toolβ147Updated 3 years ago
- scavenger : is a multi-threaded post-exploitation scanning tool for scavenging systems, finding most frequently used files and folders aβ¦β335Updated 6 years ago
- DropEngine provides a malleable framework for creating shellcode runners, allowing operators to choose from a selection of components andβ¦β210Updated 4 years ago
- A script to test credentials against Active Directory Federation Services (ADFS), allowing password spraying or bruteforce attacks.β169Updated 3 years ago
- Scans SPF and DMARC records for issues that could allow email spoofing.β128Updated 2 years ago
- A set of recipes useful in pentesting and red teaming scenariosβ141Updated last year