Find the passphrase get 50% of the balance

Use ESC1 to perform a makeshift DCSync and dump hashes

Use ESC1 to perform a makeshift DCSync and dump hashes

my notes

Pixel Experience for 7420 based devices.

Try to find the WIF key and get a donation 200 btc

Additional exploits for XSS in Cisco ASA devices discovered by PTSwarm

GooFuzz is a tool to perform fuzzing with an OSINT approach, managing to enumerate directories, files, subdomains or parameters without leaving evidence on the target's server and by means of advan…

[ECCV 2024] codes of DiffBIR: Towards Blind Image Restoration with Generative Diffusion Prior

Importer and scripts for Warcraft II: Tides of Darkness, the expansion Beyond the Dark Portal, and Aleonas Tales

JF⚡can - Super fast port scanning & service discovery using Masscan and Nmap. Scan large networks with Masscan and use Nmap's scripting abilities to discover information about services. Generate re…

checklist for testing the web applications

CVE-2021-34473 Microsoft Exchange Server Remote Code Execution Vulnerability

CVE-2023-21823 PoC

Powershell tool to automate Active Directory enumeration.

Tool for Active Directory Certificate Services enumeration and abuse

Standalone binaries for Linux/Windows of Impacket's examples

A curated list of awesome social engineering resources.

Deob-bs (Deobfuscated bash-obfuscate)

Kali Linux Cheat Sheet for Penetration Testers

Source code for Twitter's Recommendation Algorithm

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authenticat…

Joomla! < 4.2.8 - Unauthenticated information disclosure

Windows Stealer

Pony 2.0 Stealer

100% Open Source CSGO

A script to test credentials against Active Directory Federation Services (ADFS), allowing password spraying or bruteforce attacks.

PoC for Zerologon - all research credits go to Tom Tervoort of Secura