AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover security weaknesses

JavaScript 1,225 125 Updated Dec 10, 2024

GhostPack / Certify

Active Directory certificate abuse.

C# 1,587 221 Updated Aug 12, 2024

Sq00ky / attacktive-directory-tools

36 19 Updated Jul 1, 2023

RedOps-Cloud / RedOps-Cloud.github.io

RedOps-Cloud.github.io

HTML 3 3 Updated Jan 2, 2025

9STsu / Mimikatz-AllTheThings

Unleash Mimikatz — the tool that exposes the darkest corners of Windows security. This guide helps you master Mimikatz, a ruthless credential extraction tool every penetration tester and attacker …

7 Updated Dec 5, 2024

aniqfakhrul / powerview.py

Just another Powerview alternative

Python 562 57 Updated Jan 23, 2025

swisskyrepo / GraphQLmap

GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)

Python 1,432 201 Updated Mar 11, 2024

SafeBreach-Labs / CVE-2024-49113

LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113

Python 474 112 Updated Jan 2, 2025

lkarlslund / Adalanche

Attack Graph Visualizer and Explorer (Active Directory) ...Who's *really* Domain Admin?

Go 1,860 177 Updated Feb 6, 2025

CravateRouge / autobloody

Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound

Python 512 53 Updated Nov 14, 2024

p0dalirius / ExtractBitlockerKeys

A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.

Python 357 52 Updated Jan 31, 2025

HackTricks-wiki / hacktricks

Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.

JavaScript 9,460 2,798 Updated Feb 5, 2025

hakaioffsec / jwt-hunter

Simple tool for exploiting JWT vulnerabilities

Vue 9 Updated Aug 14, 2024

infosecn1nja / AD-Attack-Defense

Attack and defend active directory using modern post exploitation adversary tradecraft activity

4,502 1,046 Updated Nov 7, 2024

lockfale / OSINT-Framework

OSINT Framework

JavaScript 8,176 1,374 Updated Aug 19, 2024

bellingcat / name-variant-search

A tool for searching common variations of a human name

JavaScript 43 6 Updated Sep 26, 2024

rodolfomarianocy / Tricks-Pentest-Active-Directory

Repository with quick triggers to help during Pentest in an Active Directory environment.

43 14 Updated Oct 27, 2024

streaak / keyhacks

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

5,277 1,079 Updated Aug 14, 2024

gwen001 / keyhacks.sh

Automation of tokens/api keys testing.

Shell 122 21 Updated Mar 28, 2023

TURROKS / CVE_Prioritizer

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay infor…

Python 562 71 Updated Jan 18, 2025

h4x0r-dz / Leaked-Credentials

how to look for Leaked Credentials !

784 99 Updated May 6, 2024

BrasilAPI / BrasilAPI

Vamos transformar o Brasil em uma API?

JavaScript 8,901 615 Updated Nov 8, 2024

dhondta / dronesploit

Drone pentesting framework console

Python 1,502 252 Updated Nov 23, 2024

xxxmadxxx / thewayofhacker

This is a repository where we hack things

C 45 4 Updated Oct 25, 2023

arttoolkit / arttoolkit.github.io

A RedTeam Toolkit

HTML 394 51 Updated Oct 22, 2024

micro-joan / BlackStone

Pentesting Reporting Tool

CSS 522 88 Updated Oct 22, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Lucas S. Ls4ss

Achievements