Alternatives and similar repositories for DefCon33

Users that are interested in DefCon33 are comparing it to the libraries listed below

• aleemladha / SANS-Workshop-Lab
  SANS Workshop: Active Directory Privilege Escalation with Empire!
  ☆33Updated last week
• nullenc0de / Internal_Pentest
  Scripts that automate portions of pentests.
  ☆55Updated 3 months ago
• n00py / DockerKnocker
  Exploits Unauth Docker API
  ☆42Updated 7 months ago
• mosesrenegade / PMapper
  A tool for quickly evaluating IAM permissions in AWS.
  ☆60Updated 2 years ago
• VKo9 / AD-attacks-automation-scripts
  This repository contains scripts about ACL abuse and any other active directory attacking methods.
  ☆36Updated 2 years ago
• Lucreza / WinDefExclusionFinder
  Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges
  ☆27Updated last year
• dmcxblue / Red-Team-Guide
  A small red team course
  ☆40Updated 2 years ago
• websecnl / MagicByteSelector
  Burp Suite Extension for inserting a magic byte into responder's request
  ☆24Updated 2 years ago
• watchtowrlabs / connectwise-screenconnect_auth-bypass-add-user-poc
  ☆72Updated last year
• synacktiv / kcmdump
  Dump Kerberos tickets from the KCM database of SSSD
  ☆52Updated last year
• trickest / elasticsearch_index
  Manage attack surface data on Elasticsearch
  ☆23Updated 2 years ago
• emptynebuli / dauthi
  dauthi is a tool that takes advantage of API functionality across a variety of MDM solutions to perform user enumeration and single-facto…
  ☆42Updated last year
• Michaeladsl / Patronusx
  ☆54Updated 10 months ago
• MythicAgents / arachne
  Webshell agent in aspx and php
  ☆26Updated 3 weeks ago
• spyx / ParamAngler
  ☆27Updated 2 years ago
• kleiton0x00 / contexter
  Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3
  ☆24Updated last year
• truerustyy / wcreddump
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆79Updated last year
• nollium / CVE-2024-50340-eos-exploit
  Exploit for Symfony CVE-2024-50340 (forked eos)
  ☆29Updated last year
• n0tspam / delepwn
  DelePwn is a security assessment tool designed to identify and demonstrate the risks associated with Google Workspace Domain-Wide Delegat…
  ☆35Updated 3 months ago
• 8com / bloodhound-adAnalysis
  Automation of Active Directory penetration testing tasks on top of BloodHound CE
  ☆34Updated 2 years ago
• LuemmelSec / CVE-2023-29357
  ☆52Updated 2 years ago
• 0xBienCuit / InfraRed-AWS
  ☆62Updated last year
• PanosoikoGr / CloudTap
  Comprehensive AWS cloud reconnaissance and privilege escalation toolkit written in Python. Features IAM, EC2, S3, Lambda, ECS, Secrets Ma…
  ☆45Updated 4 months ago
• anrbn / GATOR
  GATOR - GCP Attack Toolkit for Offensive Research, a tool designed to aid in research and exploiting Google Cloud Environments
  ☆89Updated last year
• 0dteam / CVE-2024-22024
  Check for CVE-2024-22024 vulnerability in Ivanti Connect Secure
  ☆30Updated last year
• anrbn / GCP-Attack-Defense
  A Project dedicated to documenting various attack and detection vectors that can be encountered within Google Cloud Platform (GCP).
  ☆61Updated last year
• CyberSecurityUP / ImgPayload
  Advanced shellcode injector for images supports BMP, GIF, EXIF (JPEG), and LSB (PNG) techniques. Includes XOR encoding, offset indexing, …
  ☆20Updated 5 months ago
• Workingdaturah / BOF-Learning
  Cobalt Strike BOFS
  ☆16Updated last year
• honoki / burp-digitalocean-openvpn-socks
  A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it
  ☆51Updated 2 weeks ago
• saw-your-packet / EC2StepShell
  EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.
  ☆68Updated last year