This is your work, valued
Penetration tester
CredMaster. Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling
1.3kMax. Maximizing BloodHound. Max is a good boy.
533o365fedenum. Federated Office365 user enumeration based on correlated response trend analysis
49EyeWitnessTheFitness. Exactly what it sounds like, which is something rad
22BloodHound-Custom-Queries. Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets
12Reverse-DNS-Info. Python
9bloodhound-scripts. Bloodhound helper scripts
8DPS. Distributed Port Scanner (Damage-Per-Second)
6Conference-Talks. Compilation of Conference talks and details
6spoof-phisher. DNS spoofing with ARP poisoning. End goal: using DNS and ARP spoofing, automatically clone a website, harvest credentials, then redirect to the legitimate website making the phish undetectable
6FireHaus. Collection of tools refactored to add FireProx support to bypass rate-limiting
4knavesec. $> whoami
3anomaly_lab. Anomaly repo for KUISC Lab session (CTF)
3red-team-infrastructure-example. A basic Terraform configuration for provisioning simple red team infrastructure in DigitalOcean
2confused. Tool to check for dependency confusion vulnerabilities in multiple package management systems
2check_mdi. Python script to enumerate valid Microsoft 365 domains, retrieve tenant name, and check for an MDI instance.
1nuclei. Fast and customizable vulnerability scanner based on simple YAML based DSL.
1awesome-bloodhound. A curated list of awesome BloodhoundAD resources
1