kuluary Goto Github PK

cve-2020-1350

Proof-of-Concept (PoC) script to exploit SIGRed (CVE-2020-1350). Achieves Domain Admin on Domain Controllers running Windows Server 2000 up to Windows Server 2019.

cve-2020-1350-dos

A denial-of-service proof-of-concept for CVE-2020-1350

cve-2020-1472

PoC for Zerologon - all research credits go to Tom Tervoort of Secura

cve-2020-8163

CVE-2020-8163 - Remote code execution of user-provided local names in Rails

dash-masternode-tool

Tool for managing Dash masternodes with a hardware wallet (Trezor, Keepkey, Ledger Nano S)

depix

Recovers passwords from pixelized screenshots

domaintrustexplorer

Python script for analyis of the "Trust.csv" file generated by Veil PowerView. Provides graph based analysis and output.

dpln-scrpt-cobalt

Дополнительные скрипты для Кобальта

dr0p1t-framework

A framework that create an advanced stealthy dropper that bypass most AVs and have a lot of tricks

dumpert

LSASS memory dumper using direct system calls and API unhooking.

elevatekit

The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.

empire

Empire is a PowerShell and Python 3.x post-exploitation framework.

enumy

Linux post exploitation privilege escalation enumeration

excelntdonut

Excel 4.0 (XLM) Macro Generator for injecting DLLs and EXEs into memory.

fftw3

DO NOT CHECK OUT THESE FILES FROM GITHUB UNLESS YOU KNOW WHAT YOU ARE DOING. (See below.)

foca

Tool to find metadata and hidden information in the documents.

hello-world

ikev2-setup

Set up Ubuntu Server 20.04 (or 18.04) as an IKEv2 VPN server

impacket

Impacket is a collection of Python classes for working with network protocols.

install-armitage-on-linux

The purpose of this program is to make it easier for anyone interested in cyber security to install very useful tools that tend to be challenging to install. This script installs Metasploit-Framework and Armitage to the computer. Please enjoy the script (I hope it makes your life a little easier).

juicy-potato

A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.

lazagne

Credentials recovery project

metasploit

metasploit-framework

Metasploit Framework

osint-spy

Performs OSINT scan on email/domain/ip_address/organization using OSINT-SPY. It can be used by Data Miners, Infosec Researchers, Penetration Testers and cyber crime investigator in order to find deep information about their target. If you want to ask something please feel free to reach out to me at [email protected]

pastebin

Simple, fast, standalone pastebin service

pastebin-1

The original pastebin source, available under an AGPL licence

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pocsuite-z

pocsuite-z is an open-sourced remote vulnerability testing framework enhanced by z3r0yu.

privatebin

A minimalist, open source online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256 bits AES.