Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop

transform your payload into ipv4/ipv6/mac arrays

Remotely dump NT hashes through Windows Crash dumps

Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.

Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data

A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)

A tool for pointesters to find candies in SharePoint

The swiss army knife of LSASS dumping

In-depth ldap enumeration utility

Nmap Dashboard Mini Project

Useful tool to track location or mobile number

Extract credentials from lsass remotely

#1 PDF Application on GitHub that lets you edit PDFs on any device anywhere

reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via Engines, recon data correlation and organization, continuous …

PowerShell Digital Forensics & Incident Response Scripts.

DPAPI looting remotely and locally in Python

A new approach to Browser In The Browser (BITB) without the use of iframes, allowing the bypass of traditional framebusters implemented by login pages like Microsoft and the use with Evilginx.

pysnaffler

The Network Execution Tool

SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.

MITMsmtp is an Evil SMTP Server for pentesting SMTP clients to catch login credentials and mails sent over plain or SSL encrypted connections.

NetBIOS scanning tool. Currently segfaults!

A collaborative, multi-platform, red teaming framework

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

Pentest Report Generator