Remotely dump NT hashes through Windows Crash dumps

Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.

Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data

A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)

A tool for pointesters to find candies in SharePoint

The swiss army knife of LSASS dumping

In-depth ldap enumeration utility

Nmap Dashboard Mini Project

Useful tool to track location or mobile number

Extract credentials from lsass remotely

#1 Locally hosted web application that allows you to perform various operations on PDF files

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

PowerShell Digital Forensics & Incident Response Scripts.

DPAPI looting remotely and locally in Python

A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.

pysnaffler

The Network Execution Tool

SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.

MITMsmtp is an Evil SMTP Server for pentesting SMTP clients to catch login credentials and mails sent over plain or SSL encrypted connections.

NetBIOS scanning tool. Currently segfaults!

A collaborative, multi-platform, red teaming framework

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Pentest Report Generator

Conference presentation slides

Six Degrees of Domain Admin

evilginx3 + gophish