A collection of static SSH keys (public and private) that have made their way into software and hardware products.
☆850Feb 13, 2025Updated last year
Alternatives and similar repositories for ssh-badkeys
Users that are interested in ssh-badkeys are comparing it to the libraries listed below
Sorting:
- Use unicornscan to quickly scan all open ports, and then pass the open ports to nmap for detailed scans.☆627Jun 8, 2018Updated 7 years ago
- Private keys that have become public ...☆185Feb 3, 2026Updated last month
- Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems☆1,504Aug 1, 2023Updated 2 years ago
- Post Exploitation Collection☆1,569May 1, 2020Updated 5 years ago
- Collection of Proof of Concepts and Potential Targets for #ShellShocker☆891May 16, 2020Updated 5 years ago
- Debian OpenSSL Predictable PRNG (CVE-2008-0166)☆410Jan 22, 2023Updated 3 years ago
- PowerShell Runspace Post Exploitation Toolkit☆1,548Aug 2, 2019Updated 6 years ago
- PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.☆1,992Oct 10, 2018Updated 7 years ago
- Auto Domain Admin and Network Exploitation.☆299Dec 21, 2017Updated 8 years ago
- ☆147Sep 6, 2016Updated 9 years ago
- This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…☆4,173May 11, 2023Updated 2 years ago
- ☆613Oct 4, 2024Updated last year
- A swiss army knife for pentesting networks☆9,082Dec 6, 2023Updated 2 years ago
- Tater is a PowerShell implementation of the Hot Potato Windows Privilege Escalation exploit from @breenmachine and @foxglovesec☆453Apr 22, 2016Updated 9 years ago
- A post-exploitation powershell tool for extracting juicy info from memory.☆1,863Jun 28, 2024Updated last year
- Empire is a PowerShell and Python post-exploitation agent.☆7,818Jan 19, 2020Updated 6 years ago
- Unicorn is a simple tool for using a PowerShell downgrade attack and inject shellcode straight into memory. Based on Matthew Graeber's po…☆3,900Jan 24, 2024Updated 2 years ago
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆3,213Aug 7, 2025Updated 6 months ago
- Evilgrade is a modular framework that allows the user to take advantage of poor upgrade implementations by injecting fake updates.☆1,322Sep 1, 2021Updated 4 years ago
- Miscellaneous exploit code☆1,568Oct 6, 2023Updated 2 years ago
- A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…☆2,184Dec 11, 2022Updated 3 years ago
- Pop shells like a master.☆1,489Apr 2, 2019Updated 6 years ago
- Framework for Making Environmental Keyed Payloads (NO LONGER SUPPORTED)☆760Jan 28, 2019Updated 7 years ago
- The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.☆5,495Sep 22, 2024Updated last year
- Wiki to collect Red Team infrastructure hardening resources☆4,450Oct 1, 2025Updated 5 months ago
- This Powershell script will generate a malicious Microsoft Office document with a specified payload and persistence method.☆686Oct 27, 2016Updated 9 years ago
- RottenPotato local privilege escalation from service account to SYSTEM☆691Dec 29, 2017Updated 8 years ago
- WePWNise generates architecture independent VBA code to be used in Office documents or templates and automates bypassing application cont…☆351Aug 27, 2018Updated 7 years ago
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆2,913Nov 19, 2025Updated 3 months ago
- SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, Supe…☆1,309Nov 22, 2022Updated 3 years ago
- Crowbar is brute forcing tool that can be used during penetration tests. It is developed to support protocols that are not currently supp…☆1,497Dec 19, 2023Updated 2 years ago
- MS17-010☆2,231Jun 20, 2023Updated 2 years ago
- Automated Linux evil maid attack☆435Dec 22, 2015Updated 10 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆633Jun 20, 2017Updated 8 years ago
- A tool to abuse Exchange services☆2,300Jun 10, 2024Updated last year
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,838Jun 15, 2020Updated 5 years ago
- ☆509May 27, 2018Updated 7 years ago
- Automatically exported from code.google.com/p/unix-privesc-check☆1,084Feb 7, 2021Updated 5 years ago
- ☆51Jun 24, 2016Updated 9 years ago