strupo / usernames
Username lists that I created.
☆17Updated 3 years ago
Alternatives and similar repositories for usernames:
Users that are interested in usernames are comparing it to the libraries listed below
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 5 years ago
- Add SD for controlled computer object to a target object for RBCD using LDAP☆38Updated 3 years ago
- Python3 tool to perform password spraying against Microsoft Online service using various methods☆85Updated last year
- ☆16Updated 4 years ago
- Ruby script that calls an almost interactive shell via WinRM (TCP/5985) on an Windows machine, relaying on a valid Kerberos ticket. (Very…☆17Updated 5 years ago
- Modified version of PEAS client for offensive operations☆38Updated 2 years ago
- This extension allows a user to specify a lockout policy in order to automate a password spray attack via Intruder.☆24Updated 4 years ago
- Use rpc null sessions to retrieve machine list, domain admin list, domain controllers☆14Updated 2 years ago
- Any presentation we've given at FortyNorth Security☆34Updated 3 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 4 years ago
- Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!☆26Updated last year
- A tool to password spray Jenkins instances☆54Updated 5 years ago
- Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.☆20Updated 3 years ago
- ☆37Updated 6 years ago
- Library of sites for categorization☆26Updated 5 years ago
- Post-exploitation tool for attacking Active Directory domain controllers☆17Updated 2 years ago
- Iterative AD discovery toolkit for offensive operations☆86Updated 4 years ago
- Exploits developped by Outflank B.V. team members☆20Updated 7 years ago
- Convert ldapdomaindump to Bloodhound☆78Updated last year
- automatic scan for hackthebox☆14Updated 5 years ago
- BurpSuite's payload-generation extension aiming at applying fuzzed test-cases depending on the type of payload (integer, string, path; JS…☆39Updated 3 years ago
- Finding SSL Blindspots for Red Teams☆30Updated 4 years ago
- Some Hashcat Rules for 2020 and beyond. Contributions encouraged!☆24Updated 2 years ago
- Jenkins pre-auth RCE exploit. More info at https://jenkins.io/security/advisory/2019-01-08/#SECURITY-1266 https://blog.orange.tw/2019/02/…☆10Updated 5 years ago
- JavaScript functions intended to be used as an XSS payload against a WordPress admin account.☆54Updated 4 years ago
- ☆9Updated 3 years ago
- Stuff for OSWP Exam - Try harder ^^☆9Updated 7 years ago
- ☆31Updated 4 years ago
- Jira Secret Hunter - Helps you find credentials and sensitive contents in Jira tickets☆43Updated 2 years ago