Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain ba…

Utility to enumerate users, groups and computers from a Windows domain through LDAP queries

Wordlists for creating statistically likely username lists for use in password attacks and security testing

Sniffs sensitive data from interface or pcap

Socks4 reverse proxy for penetration testing. Python 2 and 3 compatible.

Tunnel TCP connections through ICMP.

🔐 Securely share sensitive information with automatic expiration & deletion after a set number of views or duration. Track who, what and when with full audit logs.

Sample pentest report provided by TCM Security

A feature-light sshd(8) for Windows, Mac, and Linux written in Go

Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet

Enhance your cybersecurity skills with comprehensive notes for SOC Analysts. Dive into security operations, incident response, threat hunting, and practical examples to bolster your expertise. Acce…

Penelope Shell Handler

SSH based reverse shell

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world.…

This repository will contain many mindmaps for cyber security technologies, methodologies, courses, and certifications in a tree structure to give brief details about them

Trying to tame the three-headed dog.

Credentials recovery project

PowerShell Pass The Hash Utils

Username tools for penetration testing

One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️

WhiteWinterWolf's PHP web shell

Windows AV Evasion

A collaborative, multi-platform, red teaming framework

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Homelab Goodies

OSCP Cheat Sheet

Kernel mode WinDbg extension and PoCs for token privilege investigation.

Fork of BloodHound with PKI nodes and edges for Certipy along with some minor personal improvements

match command-line arguments to their help text