Ivanti EPM SQL Injection Remote Code Execution Vulnerability

🔍 gowitness - a golang, web screenshot utility using Chrome Headless

Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by (ab)using LDAP Ping requests (cLDAP)

PXEThief is a set of tooling that can extract passwords from the Operating System Deployment functionality in Microsoft Endpoint Configuration Manager

A recursive internet scanner for hackers.

Fast and customizable vulnerability scanner based on simple YAML based DSL.

Frontpage and Sharepoint fingerprinting and attack tool.

↕️🤫 Stealth redirector for your red team operation security

Python setter/getter for property ms-Mcs-AdmPwd used by LAPS.

A collection of Azure AD/Entra tools for offensive and defensive security purposes

Tool to extract powerful tokens from Office desktop apps memory

Miscellaneous tools for BloodHound

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user

Tool for issuing manual LDAP queries which offers bofhound compatible output

notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)

MemProcFS

Impacket is a collection of Python classes for working with network protocols.

Active Directory ACL exploitation with BloodHound

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

CVE-2023-20198 Exploit PoC

Enumerate information from NTLM authentication enabled web endpoints 🔎

Playground (and dump) of stuff I make or modify for the Flipper Zero

🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens