A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.

Python 515 66 Updated Jan 31, 2025

dirkjanm / krbrelayx

Kerberos unconstrained delegation abuse toolkit

Python 1,267 180 Updated Jan 27, 2025

p0dalirius / Coercer

A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.

Python 1,933 193 Updated Mar 21, 2025

Greenwolf / ntlm_theft

A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)

Python 1,104 135 Updated May 25, 2024

praetorian-inc / NTLMRecon

A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.

Go 84 10 Updated Dec 11, 2023

fox-it / cve-2019-1040-scanner

Python 293 56 Updated Nov 9, 2020

ustayready / CredKing

Password spraying using AWS Lambda for IP rotation

Python 599 93 Updated Feb 14, 2023

pentestmonkey / smtp-user-enum

Username guessing tool primarily for use against the default Solaris SMTP service. Can use either EXPN, VRFY or RCPT TO.

Perl 116 41 Updated Apr 20, 2022

EdOverflow / can-i-take-over-xyz

"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.

Python 5,084 743 Updated Feb 8, 2025

WhiteWinterWolf / wwwolf-php-webshell

WhiteWinterWolf's PHP web shell

PHP 641 158 Updated Dec 2, 2017

bats3c / darkarmour

Windows AV Evasion

Python 765 122 Updated Apr 13, 2020

thewhiteh4t / FinalRecon

All In One Web Recon

Python 2,393 444 Updated Nov 3, 2024

lanmaster53 / recon-ng

Open Source Intelligence gathering tool aimed at reducing the time spent harvesting information from open sources.

Python 4,518 711 Updated Nov 1, 2024

smicallef / spiderfoot

SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.

Python 14,021 2,391 Updated Dec 15, 2024

sullo / nikto

Nikto web server scanner

Perl 9,089 1,295 Updated Feb 22, 2025

epi052 / feroxbuster

A fast, simple, recursive content discovery tool written in Rust.

Rust 6,351 525 Updated Mar 20, 2025

owasp-amass / amass

In-depth attack surface mapping and asset discovery

Go 12,685 1,953 Updated Mar 28, 2025

d3mondev / puredns

Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.

Go 1,843 166 Updated Nov 18, 2024

tomnomnom / assetfinder

Find domains and subdomains related to a given domain

Go 3,201 504 Updated Jun 7, 2024

darkoperator / dnsrecon

DNS Enumeration Script

Python 2,737 553 Updated Mar 24, 2025

quentinhardy / odat

ODAT: Oracle Database Attacking Tool

Python 1,654 349 Updated Jul 27, 2024

clr2of8 / DPAT

Domain Password Audit Tool for Pentesters

Python 950 156 Updated Jun 24, 2022

Serhat Çelik x3525

Lists (22)

Active Directory

Binary

Database

DNS

Evasion

Exploitation

Fuzzing

Information Gathering

Most Used

Obfuscation

Passwords

Payloads

Pivoting

PoC

Post Exploitation

Privilege Escalation

Reconnaissance

Reverse Engineering

Sniffing

Spraying

Vulnerability

Web

Stars