pelican9091 Goto Github PK

mailcat

Find existing email addresses by nickname using API/SMTP checking methods without user notification. Please, don't hesitate to improve cat's job! 🐱🔎 📬

mailsniper

MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.

mfasweep

A tool for checking if MFA is enabled on multiple Microsoft Services

microsoft365_devicephish

A proof-of-concept script to conduct a phishing attack abusing Microsoft 365 OAuth Authorization Flow

mrkaplan

MrKaplan is a tool aimed to help red teamers to stay hidden by clearing evidence of execution.

mythic

A collaborative, multi-platform, red teaming framework

offensivereading

A curated reading list about offensive IT security

oh365userfinder

Python3 o365 User Enumeration Tool

open-source-mac-os-apps

🚀 Awesome list of open source applications for macOS. https://t.me/s/opensourcemacosapps

oscp-bof

This is a walkthrough about understanding the #BoF machine present in the #OSCP exam.

penglab

Abuse of Google Colab for cracking hashes. 🐧

pentest-tools

personalstuff

This is a repo is to upload files done during my research.

phishious

An open-source Secure Email Gateway (SEG) evaluation toolkit designed for red-teamers.

redelk

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.

responder

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

reverse-shell-generator

Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)

rubeus-gui

GUI alternative to the Rubeus command line tool, for all your Kerberos exploit requirements

scarecrow

ScareCrow - Payload creation framework designed around EDR bypass.

securitytips

smbcrawler

smbcrawler is no-nonsense tool that takes credentials and a list of hosts and 'crawls' (or 'spiders') through those shares

sn1per

Attack Surface Management Platform | Sn1perSecurity LLC

socialfish

Phishing Tool & Information Collector

spiderfoot

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

syft

CLI tool and library for generating a Software Bill of Materials from container images and filesystems

thefatrat

Thefatrat a massive exploiting tool : Easy tool to generate backdoor and easy tool to post exploitation attack like browser attack and etc . This tool compiles a malware with popular payload and then the compiled malware can be execute on windows, android, mac . The malware that created with this tool also have an ability to bypass most AV software protection .

thephish

ThePhish: an automated phishing email analysis tool

trevorspray

A featureful round-robin SOCKS proxy and Python O365 sprayer based on MSOLSpray

webmap

WebMap-Nmap Web Dashboard and Reporting

winpwn

Automation for internal Windows Penetrationtest / AD-Security