A collection of open source and commercial tools that aid in red team operations.

A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.

SIEM Tactics, Techiques, and Procedures

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Decrypt App-Bound encrypted keys in Chrome 127+, using the IElevator COM interface bypassing path validation and encryption protections.

Some settings stolen from multiple scripts @ZephrFish

Схема карьерных треков в кибербезопасности

ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.

linWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks

Tools and Techniques for Red Team / Penetration Testing

Dumping DPAPI credz remotely

ScreenConnect AuthBypass(cve-2024-1709) --> RCE!!!

Windows Local Privilege Escalation Cookbook

Tool to remotely dump secrets from the Windows registry

Best practices for segmentation of the corporate network of any company

Sticky notes for pentesting, bug bounty, CTF.

A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compiled for educational purposes. The contents of this repository…

A swiss army knife for pentesting networks

Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the white paper Certified Pre-Owned.

An easy to install and easy to run tool for generating exploit payloads for CVE-2023-38831, WinRAR RCE before versions 6.23

Attack and defend active directory using modern post exploitation adversary tradecraft activity

Curated list of public penetration test reports released by several consulting firms and academic security groups

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 9 methods.

Checklists for Testing Security environment

A PowerShell implementation of the popular CrackMapExec tool. No Linux required here!

Tool for exploiting Active Directory Enviroments