This is your work, valued

Denver

n00py

Elite
@n00py

I look at packets.

WPForce. Wordpress Attack Suite

976

LAPSDumper. Dumping LAPS from Python

287

NorkNork. Powershell Empire Persistence finder

119

DCSync. DCSync Attack from Outside using Impacket

118

Hwacha. Deploy payloads to *Nix systems en masse

109

ReadingList. Python

108

GetFGPP. Get Fine Grained Password Policy

79

pOSt-eX. Post-exploitation scripts for OS X persistence and privesc

73

Slackor. A Golang implant that uses Slack as a command and control server

48

DockerKnocker. Exploits Unauth Docker API

45

CUCMe. Cisco Unfied Call Manager enumeration

24

Dissonance. Rogue Synergy server

18

BurpIntruderDownloader. https://www.n00py.io/2020/05/extracting-files-from-burp-intruder-output/

14

AngryHippo. Exploiting the HippoConnect protocol for HippoRemote

10

Coercer. A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

8

CactusCon2023.

7

RapidIdentity_spray. For Spraying RapidIdentity Portals

4

Pandoras-Box. This repo contains my custom scripts for Penetration Testing and Red Team Assessments. I will keep on updating this repo as and when I get time.

3

go-secdump. Tool to remotely dump secrets from the Windows registry

3

awesome-pentest. A collection of awesome penetration testing resources, tools and other shiny things

3

BetterHeaderGetter. Python

3

BlackHatPython. Black Hat Python Labs

3

CVE-2022-39197. CobaltStrike <= 4.7.1 RCE

2

java_deserialization_exploits. A collection of Java Deserialization Exploits

2

SprayingToolkit. Scripts to make password spraying attacks against Lync/S4B & OWA a lot quicker, less painful and more efficient

2

awesome-windows-security. List of Awesome Windows Security Resources

2

plznospy. Go

2

go-execute-assembly. Allow a Go process to dynamically load .NET assemblies

2

nps_payload. This script will generate payloads for basic intrusion detection avoidance. It utilizes publicly demonstrated techniques from several different sources. Written by Larry Spohn (@Spoonman1091) Payload written by Ben Mauch (@Ben0xA) aka dirty_ben

2

PractiScore. Auto-registers for matches in PractiScore

2

routersploit. The Router Exploitation Framework

2

KeychainCracker. macOS keychain cracking tool

1

n00py.

1

FuzzStrings. Simple, hand-picked list of fuzz strings

1

CrackMapExec. A swiss army knife for pentesting networks

1

NetExec. The Network Execution Tool

1

respounder. Respounder detects presence of responder in the network.

1

SeeYouCM-Thief. HTML

1

findmyhash. Hash cracker

1

twittor. A fully featured backdoor that uses Twitter as a C&C server

1

impacket. Impacket is a collection of Python classes for working with network protocols.

1

go-mimikatz. A wrapper around a pre-compiled version of the Mimikatz executable for the purpose of anti-virus evasion.

1

OffensiveGoLang. A collection of Offensive Go packages.

1