Ellis Springe

Expert
@knavesec

Penetration tester

CredMaster. Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling

1.3k

Max. Maximizing BloodHound. Max is a good boy.

533

o365fedenum. Federated Office365 user enumeration based on correlated response trend analysis

49

EyeWitnessTheFitness. Exactly what it sounds like, which is something rad

22

BloodHound-Custom-Queries. Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets

12

Reverse-DNS-Info. Python

9

bloodhound-scripts. Bloodhound helper scripts

8

DPS. Distributed Port Scanner (Damage-Per-Second)

6

Conference-Talks. Compilation of Conference talks and details

6

spoof-phisher. DNS spoofing with ARP poisoning. End goal: using DNS and ARP spoofing, automatically clone a website, harvest credentials, then redirect to the legitimate website making the phish undetectable

6

FireHaus. Collection of tools refactored to add FireProx support to bypass rate-limiting

4

knavesec. $> whoami

3

anomaly_lab. Anomaly repo for KUISC Lab session (CTF)

3

red-team-infrastructure-example. A basic Terraform configuration for provisioning simple red team infrastructure in DigitalOcean

2

confused. Tool to check for dependency confusion vulnerabilities in multiple package management systems

2

check_mdi. Python script to enumerate valid Microsoft 365 domains, retrieve tenant name, and check for an MDI instance.

1

nuclei. Fast and customizable vulnerability scanner based on simple YAML based DSL.

1

awesome-bloodhound. A curated list of awesome BloodhoundAD resources

1
18
Apply