dagda76 Goto Github PK
Type: User
Type: User
Collection of common ADSI queries for Domain Account enumeration
Microsoft signed ActiveDirectory PowerShell module
AMSI bypasses
This repo contains some Amsi Bypass methods i found on different Blog Posts.
Circumvent AMSI by patching AmsiScanBuffer
A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, parsing, and creating malicious payloads and listeners with Metasploit.
Checks expired domains for categorization/reputation and Archive.org history to determine good candidates for phishing and C2 domain names
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
Directory Services Internals (DSInternals) PowerShell Module and Framework
Empire is a PowerShell and Python 3.x post-exploitation framework.
Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
PowerShell script to search as file share for potential sensitive data patterns
Search for potential frontable domains
FindUncommonShares.py is a Python equivalent of PowerView's Invoke-ShareFinder.ps1 allowing to quickly find uncommon shares in vast Windows Domains.
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
An unconventional Windows reverse shell, currently undetected by Microsoft Defender and various other AV solutions, solely based on http(s) traffic.
Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS
.NET IPv4/IPv6 machine-in-the-middle tool for penetration testers
PowerShell script to execute common internal penetration testing techniques in an Active Directory environment
Command line interface to dump LSASS memory to disk via SilentProcessExit
The Network Execution Tool
A mostly-serverless distributed hash cracking platform
Enumerate information from NTLM authentication enabled web endpoints 🔎
OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team exercises.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.