rebel scum, nerfherder, starbuck . hacker at @trustedsec
onedrive_user_enum. onedrive user enumeration - pentest tool to enumerate valid o365 users
757o365recon. retrieve information via O365 and AzureAD with a valid cred
744ntlmscan. scan for NTLM directories
395lyncsmash. locate and attack Lync/Skype for Business
345username-lists. list of usernames and email addresses for pentests
220AzureAD_Autologon_Brute. Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/
107guestlist. tool for identifying guest relationships between companies
103nyxgeek-rules. Custom password cracking rules for Hashcat and John the Ripper
95track_the_planet. DEFCON 31 slide deck and video link
69dumpsniffer. tools for analyzing strings from password lists
59teamstracker. using graph proxy to monitor teams user presence
56imgdevil. quick and dirty proof-of-concept to hide shells in images
52dirdevil. hiding in plain sight: part 2
47weakpass_generator. generates weak passwords based on current date
44cloudkicker. self-hosted Azure OSINT tool
35autodiscover_enum. time-based user enum via Basic Auth in Azure against Autodiscover
35frontdoor_waf_wtf. Script to check Azure Front Door WAF for insecure RemoteAddr variable
30nyxgeek-wordlists. wordlists for password cracking
29azure_survey_2025. results of scraping OneDrive from February 2022 - March 2025
26twitter-usernames-wordlist. Wordlist compiled from Twitter usernames
18trontastic_usernames. top usernames from azure survey 2025
17bad_guest. PowerShell
15nyxgeek-readinglist. hacker folklore, history, and culture
14rpcfiend. Use rpc null sessions to retrieve machine list, domain admin list, domain controllers
13simple_scanners. simple pentest scanning scripts with no db
11enum4linux. enum4Linux is a Linux alternative to enum.exe for enumerating data from Windows and Samba hosts.
10Evil_OAuth2_App. Creating an Evil OAuth2 application with PHP
8f5-cookie-monster. give it a url, will decode f5 cookies to reveal internal IPs
7classic_hacking_tools. archive of classic hack tools < 2000
6TeamsEnum. User Enumeration of Microsoft Teams users via API
6graphninja. Python
6phrack69. mirror of phrack issue 69
6h4x0rsearch. list of domains that are included in h4x0rsearch.com
5vulnmgmt. Be alerted ONLY on new vulnerabilities discovered in software you use
5SecretServerSecretStealer. Powershell script that decrypts the data stored within a Thycotic Secret Server
4nyxgeek-slides. slide decks etc
4icu. ICU for Microsoft Teams - to be released February 14, 2025
4exploits. my public exploit code
4shmoocon. Azure Survey 2025: 60 Million Users and Counting. my slide deck from shmoocon #20
3domain. forked from jhaddix/domain enum script, changed for Mac OS X
3open_source_hardware. a list of open source hardware projects that interest me
3bashscan. simple bash portscanner using nc
3media. images, gifs, movies i've modded or made
2jtr-to-hashcat. Converts NETNTLM hashes in JtR format and converts them into the format hashcat uses.
2hashcat. World's fastest and most advanced password recovery utility
2LDAPPER. LDAP Querying without the Suck
2gcp_tools. scripts for testing GCP
2retrocomputing_resources. collection of old computing stuff
2AADInternals. AADInternals PowerShell module for administering Azure AD and Office 365
2PowerShell. NetSPI PowerShell Scripts
2blogs. links to my blogs
1medusa. Medusa is a speedy, parallel, and modular, login brute-forcer.
1CMSmap. Python
1open_source_farming. HTML
1GraphRunner. A Post-exploitation Toolset for Interacting with the Microsoft Graph API
1