A script to automatically dump all URLs present in /server-status to a file locally.

Impacket is a collection of Python classes for working with network protocols.

A streamlined tool for discovering TLDs, associated domains, and related domain names.

Python library for interacting with FreeIPA network protocols

SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.

Dump lsass using only NTAPIS running 3 programs to create 3 JSON and 1 ZIP file... and generate the Minidump later!

No-root network monitor, firewall and PCAP dumper for Android

GitHub CVE Repository Hunt

BloodHound PowerShell client

DPAPI looting remotely and locally in Python

Azure Data Exporter for BloodHound

Censor Tracker is a censorship circumvention extension for Google Chrome and Mozilla Firefox.

Leak of any user's NetNTLM hash. Fixed in KB5040434

GeoServer Remote Code Execution

DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYSTEM privileges. This script has been customized from the ori…

BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions

Create a screenshot of a remote desktop because NLA is disabled.

Process injection alternative

Xray, Penetrates Everything. Also the best v2ray-core, with XTLS support. Fully compatible configuration.

Monitor changes in Active Directory with replication metadata

This tool, programmed in C#, allows for the fast discovery and exploitation of vulnerabilities in MSSQL servers

BlueToolkit is an extensible Bluetooth Classic vulnerability testing framework that helps uncover new and old vulnerabilities in Bluetooth-enabled devices. Could be used in the vulnerability resea…

CVE-2024-22274: Authenticated Remote Code Execution in VMware vCenter Server

POC for CVE-2024-36401. This POC will attempt to establish a reverse shell from the vlun targets.

Dynamically convert an unmanaged EXE or DLL file to PIC shellcode by prepending a shellcode stub.

32-bit PoC for CVE-2024-6387 — mirror of the original 7etsuo/cve-2024-6387-poc

Transliterate Cyrillic script to Latin script and vice versa.