This is your work, valued

Eloy

Expert
@zer1t0

certi. ADCS abuser

323

ticket_converter. A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.

171

cerbero. Kerberos protocol attacker

139

awsenum. Enumerate AWS permissions and resources.

72

ntlm-info. Retrieve host information from NTLM

32

keydump. Dump Linux keyrings

24

httpsweet. An HTTP server to easily download and upload files.

23

shellnova. Advanced shellcode implant template for Linux

15

arplayer. A tool to attack ARP

15

dhcplayer. Play with DHCP

11

pivotnacci. A tool to make socks connections through HTTP agents

6

tickey. Tool to extract Kerberos tickets from Linux kernel keys.

5

BadBlood. BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.

3

sudohunt. Hunt for sudo sessions

3

barrido. Tool to discover paths in web applications

3

atomic-red-team. Small and highly portable detection tests based on MITRE's ATT&CK.

2

wappalyzer. Identify technology on websites.

2

nishang. Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

2

sepriv. Tool to manage user privileges

2

cybernotes. HTML

2

htesterp. Rust

1

kerbrute. An script to perform kerberos bruteforcing by using impacket

1

suricata. Suricata git repository maintained by the OISF

1

Empire. Empire is a PowerShell and Python post-exploitation agent.

1

pwntools. CTF framework and exploit development library

1

suricata-verify. Suricata Verification Tests - Testing Suricata Output

1

argparses. Parsers of arguments in several languages

1