thelikes / arsenal

Related projects: ⓘ

• ricardojoserf / http-protocol-exfil
  Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)
  ☆21Updated 2 years ago
• MrTuxx / aad-sso-enum-brute-spray
  Proof of Concept in Go from Secureworks' research on Azure Active Directory Brute-Force Attacks. Inspired by @treebuilder's POC on PowerS…
  ☆13Updated 2 years ago
• Cobalt-Strike / ZeroLogon-BOF
  ☆11Updated 4 years ago
• warferik / CVE-2019-3980
  ☆16Updated 3 years ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 2 years ago
• byt3bl33d3r / herpaderping
  Process Herpaderping proof of concept, tool, and technical deep dive. Process Herpaderping bypasses security products by obscuring the in…
  ☆17Updated 3 years ago
• RythmStick / ProxyPunch
  Finding SSL Blindspots for Red Teams
  ☆30Updated 4 years ago
• calebstewart / pwncat-windows-c2
  pwncat windows c2 components
  ☆17Updated 3 years ago
• Aetsu / drakus
  Drakus allows you to monitor the artifacts and domains used in a Red Team exercise to see if they have been uploaded to certain online ma…
  ☆13Updated 3 years ago
• EspressoCake / Cobalt_Strike_Ansible
  A project to replicate the functionality of Noah Powers' ServerSetup script, but with error handling and fixed Namecheap API support.
  ☆33Updated 2 years ago
• byt3bl33d3r / PrivExchange
  Exchange your privileges for Domain Admin privs by abusing Exchange
  ☆15Updated 4 years ago
• outflanknl / RedFile
  Serving files with conditions, serverside keying and more.
  ☆18Updated 2 years ago
• qsecure-labs / Sp00fer
  Sp00fer blog post -
  ☆25Updated 2 years ago
• m8sec / EAPrimer
  C# project to Reflectively load .Net assemblies in memory
  ☆15Updated 3 months ago
• mansk1es / Caboom
  A malicious .cab creation tool for CVE-2021-40444
  ☆12Updated 3 years ago
• NVISOsecurity / FileSearcher
  ☆23Updated 4 years ago
• Bond-o / vnum
  Cisco CallManager User Enumeration
  ☆15Updated 2 years ago
• snovvcrash / peas
  Modified version of PEAS client for offensive operations
  ☆38Updated last year
• AidenPearce369 / linux-chrome-recon
  ☆20Updated this week
• NVISOsecurity / cobalt-strike-notifier
  ☆13Updated 3 years ago
• knavesec / BloodHound-Custom-Queries
  Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets
  ☆10Updated 3 years ago
• nyxgeek / rpcfiend
  Use rpc null sessions to retrieve machine list, domain admin list, domain controllers
  ☆12Updated last year
• shantanu561993 / heroku-reverse-proxy
  Spin up a reverse proxy quickly on Heroku
  ☆13Updated 3 years ago
• 0xvm / csharp_reverse_shell
  c# reverse shell poc
  ☆27Updated 5 years ago
• Dec0ne / Recon-ng-Modules
  Recon-ng modules for basic OSINT.
  ☆9Updated 2 years ago
• joshfaust / Windows_Hunt
  Analyze Windows Systems for common and unique vulnerabilities
  ☆9Updated 2 years ago
• tmenochet / ADThief
  Post-exploitation tool for attacking Active Directory domain controllers
  ☆15Updated last year
• password-reset / TrelloC2
  Simple C2 over the Trello API
  ☆37Updated last year
• onsecurity / evilginx2
  Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of …
  ☆13Updated 5 months ago
• chvancooten / nimbuild
  A Docker container used to easily compile Nim binaries generated by my tools (NimPackt and NimPlant)
  ☆12Updated last year