fancysauced Goto Github PK
Type: User
Type: User
POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln
AADInternals PowerShell module for administering Azure AD and Office 365
Dump Azure AD Connect credentials for Azure AD and Active Directory
A Cobalt Strike Aggressor script to generate GadgetToJScript payloads
This repo contains some Amsi Bypass methods i found on different Blog Posts.
There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
A graph-based tool for visualizing effective access and resource relationships in AWS environments.
Azure Outlook Command & Control. Threat Emulation Tool for North Korean APT InkySquid / ScarCruft / APT37. TTP = Abuse Microsoft Graph API for C2 Operations.
Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime patches signatures and uses SharpSploit DInvoke to PE-Load into memory.
Six Degrees of Domain Admin
A Python based ingestor for BloodHound
BloodyAD is an Active Directory Privilege Escalation Framework
Generate BloodHound compatible JSON from logs written by ldapsearch BOF and pyldapsearch
Collection of Beacon Object Files
C2concealer is a command line tool that generates randomized C2 malleable profiles for use in Cobalt Strike.
Tool for Active Directory Certificate Services enumeration and abuse
A fast TCP/UDP tunnel over HTTP
A .NET XOR encrypted cobalt strike aggressor implementation for chisel to utilize faster proxy and advanced socks5 capabilities.
CLIPBRDWNDCLASS process injection technique(BOF) - execute beacon shellcode in callback
This tool implements a cloud version of the Shadow Copy attack against domain controllers running in AWS using only the EC2:CreateSnapshot permission.
This repository contains a collection of cheatsheets I have put together for tools related to pentesting organizations that leverage cloud providers.
Attempting to be an all in one repo for others' userful aggressor scripts as well as things we've found useful during Red Team Operations.
An open-source, free protector for .NET applications
Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that back through your already existing Beacon communication channel
Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
Proof of Concept Exploit for vCenter CVE-2021-21972
Identifies the bytes that Microsoft Defender flags on.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.