This is your work, valued
FindFrontableDomains. Search for potential frontable domains
647Bolthole. Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.
300SharpPrinter. Discover Printers
173MSBuildAPICaller. MSBuild Without MSBuild.exe
155SharpSMBSpray. Spray a hash via smb to check for local administrator access
143SharpCOM. CSHARP DCOM Fun
137NoMSBuild. MSBuild without MSbuild.exe
135Azure-App-Tools. Collection of tools to use with Azure Applications
113SharpExcel4-DCOM. Port of Invoke-Excel4DCOM
104Word-Doc-Video-Embed-EXE-POC. HTML
93SharpFruit. A C# penetration testing tool to discover low-haning web fruit via web requests.
91RendezvousRAT. Self-healing RAT utilizing libp2p
88MimeSpray. MimeCast Password Spraying Tool
47PenTesting-Scripts. A ton of helpful tools
39FindIngressEmail. Find Inbound Email Domains
34PELoader. Load PE via XML Attribute
31RuralBishop. D/Invoke port of UrbanBishop
30CrypoCurrencyPowerShell. PowerShell
30FlaskRedirectorProtector. Protect your servers with a secret header
29Sharp-Suite. My musings with C#
28HashCant. Some Hashcat Rules for 2020 and beyond. Contributions encouraged!
26MSSQLUDPScanner. Discover MSSQL Instances via UDP Scanning
25DInjector. Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL
23OSGiScanner. Scan for OSGi Consoles
21eavesarp. Analyze ARP requests to identify hosts that are communicating with one another.
19SharpSSDP. SSDP Service Discovery
17Phunter. Phunter is an osint tool allowing you to find various information via a phone number 🔎📞
14UACSilentCleanup. C#
14SharpEdge. C# Implementation of Get-VaultCredential
13Armitage-Cortana-Resource-Opener. Open Resource Files in Armitage with Cortana
12Carnac. Carnac The Magnificent: Pancakeswap Prediction Market Bot
11POSH-Commander. Invoke remote powershell scripts in memory of compromised hosts.
11PoC-in-GitHub. 📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
11CanaryServer. Fake SMB and SAMR data
11MiniDump. alternative to procdump
11SpoolFool. Exploit for CVE-2022-21999 - Windows Print Spooler Elevation of Privilege Vulnerability (LPE)
10evilginx2. Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication
10ociRecon. A Python tool for listing and managing various Oracle Cloud Infrastructure (OCI) resources using the OCI API.
9SkiDzEX. A modded version of ConfuserEx | SkiDzEx
9Shellcode-Via-HTA. How To Execute Shellcode via HTA
8KeyTabExtract. Extracts Key Values from .keytab files
8LeakedWallpaper. Leak of any user's NetNTLM hash. Fixed in KB5040434
8BEAR. Bear C2 is a compilation of C2 scripts, payloads, and stagers used in simulated attacks by Russian APT groups, Bear features a variety of encryption methods, including AES, XOR, DES, TLS, RC4, RSA and ChaCha to secure communication between the payload and the operator machine.
8atomic-red-team. Small and highly portable detection tests.
8NET-Obfuscate. Obfuscate ECMA CIL (.NET IL) assemblies to evade Windows Defender AMSI
7365Inspect. A PowerShell script that automates the security assessment of Microsoft Office 365 environments.
7CVE-2021-21973. Proof of Concept Exploit for vCenter CVE-2021-21972
7Posh-Runas. PowerShell
6OracleCommander. Oracle Commander
6CVE-2021-1675. Impacket implementation of CVE-2021-1675
6bbot. OSINT automation for hackers.
6ADEnum. Active Directory Enumeration Tool
6MiscTools. Miscellaneous Tools
6X-Commander. MySQLlX Multitool
6RDP-Users. Lists the IP, hostname, and Active Directory username of Remote Desktop Protocol (RDP) users connected to a Windows Terminal Server.
5C2-Tool-Collection. A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
5trufflehog. Find credentials all over the place
5NtDumpBOF. C
5