certi. ADCS abuser
323ticket_converter. A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
171cerbero. Kerberos protocol attacker
139awsenum. Enumerate AWS permissions and resources.
72ntlm-info. Retrieve host information from NTLM
32keydump. Dump Linux keyrings
24httpsweet. An HTTP server to easily download and upload files.
23shellnova. Advanced shellcode implant template for Linux
15arplayer. A tool to attack ARP
15dhcplayer. Play with DHCP
11pivotnacci. A tool to make socks connections through HTTP agents
6tickey. Tool to extract Kerberos tickets from Linux kernel keys.
5BadBlood. BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.
3sudohunt. Hunt for sudo sessions
3barrido. Tool to discover paths in web applications
3atomic-red-team. Small and highly portable detection tests based on MITRE's ATT&CK.
2wappalyzer. Identify technology on websites.
2nishang. Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
2sepriv. Tool to manage user privileges
2cybernotes. HTML
2htesterp. Rust
1kerbrute. An script to perform kerberos bruteforcing by using impacket
1suricata. Suricata git repository maintained by the OISF
1Empire. Empire is a PowerShell and Python post-exploitation agent.
1pwntools. CTF framework and exploit development library
1suricata-verify. Suricata Verification Tests - Testing Suricata Output
1argparses. Parsers of arguments in several languages
1