strupo / usernames
Username lists that I created.
☆17Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for usernames
- Add SD for controlled computer object to a target object for RBCD using LDAP☆38Updated 3 years ago
- Library of sites for categorization☆26Updated 5 years ago
- This extension allows a user to specify a lockout policy in order to automate a password spray attack via Intruder.☆23Updated 4 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Updated 5 years ago
- Python3 tool to perform password spraying against Microsoft Online service using various methods☆84Updated last year
- Ruby script that calls an almost interactive shell via WinRM (TCP/5985) on an Windows machine, relaying on a valid Kerberos ticket. (Very…☆16Updated 5 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 5 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 3 years ago
- Iterative AD discovery toolkit for offensive operations☆86Updated 4 years ago
- Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.☆20Updated 3 years ago
- Use rpc null sessions to retrieve machine list, domain admin list, domain controllers☆13Updated last year
- ☆16Updated 3 years ago
- Modified version of PEAS client for offensive operations☆38Updated last year
- Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!☆26Updated last year
- ☆30Updated 4 years ago
- (kinda) Malicious Outlook Reader☆17Updated 3 years ago
- Gmail Enumeration using a glitch described here https://blog.0day.rocks/abusing-gmail-to-get-previously-unlisted-e-mail-addresses-41544b6…☆23Updated 2 years ago
- JavaScript functions intended to be used as an XSS payload against a WordPress admin account.☆53Updated 4 years ago
- A tool to password spray Jenkins instances☆52Updated 5 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆39Updated 3 years ago
- Some Hashcat Rules for 2020 and beyond. Contributions encouraged!☆24Updated 2 years ago
- A simple script that edits the XML of a macro-enabled Word document (.docm or Word 97 document) to add a reference to a remote stylesheet…☆10Updated 2 years ago
- Any presentation we've given at FortyNorth Security☆33Updated 3 years ago
- Convert ldapdomaindump to Bloodhound☆77Updated 11 months ago
- automatic scan for hackthebox☆14Updated 4 years ago
- ☆37Updated 6 years ago
- Stuff for OSWP Exam - Try harder ^^☆9Updated 6 years ago
- A simple program to query nmap xml files in the terminal.☆26Updated 4 years ago