Skip to content
@blackarrowsec

BlackArrow

offensive driven defense

Pinned Loading

  1. mssqlproxy mssqlproxy Public

    mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socket reuse

    Python 727 112

  2. pivotnacci pivotnacci Public

    A tool to make socks connections through HTTP agents

    Python 684 113

  3. Handly Handly Public

    Abuse leaked token handles.

    C# 130 14

  4. wappy wappy Public

    Discover web technologies in web applications from your terminal

    Python 46 7

  5. redteam-research redteam-research Public

    Collection of PoC and offensive techniques used by the BlackArrow Red Team

    C 1.1k 188

  6. advisories advisories Public

    Advisories and Proofs of Concept by BlackArrow

    Python 17 10

Repositories

Showing 10 of 19 repositories
  • EDR-Evaluation-Methodology Public

    This project implements a methodology for evaluating EDR solutions according to our Threat Hunting model

    blackarrowsec/EDR-Evaluation-Methodology’s past year of commit activity
    4 Apache-2.0 0 1 0 Updated Dec 2, 2024
  • redteam-research Public

    Collection of PoC and offensive techniques used by the BlackArrow Red Team

    blackarrowsec/redteam-research’s past year of commit activity
    C 1,087 188 1 0 Updated Jul 19, 2024
  • blackarrowsec/tactical-hunting’s past year of commit activity
    4 0 0 0 Updated Jun 18, 2024
  • advisories Public

    Advisories and Proofs of Concept by BlackArrow

    blackarrowsec/advisories’s past year of commit activity
    Python 17 MIT 10 0 1 Updated Apr 4, 2024
  • impacket Public Forked from fortra/impacket

    Impacket is a collection of Python classes for working with network protocols.

    blackarrowsec/impacket’s past year of commit activity
    Python 7 3,670 0 0 Updated Feb 9, 2024
  • Handly Public

    Abuse leaked token handles.

    blackarrowsec/Handly’s past year of commit activity
    C# 130 Apache-2.0 14 0 0 Updated Dec 14, 2023
  • EAP_buster Public

    EAP_buster is a simple bash script that lists what EAP methods are supported by the RADIUS server behind a WPA-Enterprise access point

    blackarrowsec/EAP_buster’s past year of commit activity
    Shell 66 MIT 8 0 0 Updated Oct 27, 2023
  • ntlm_challenger Public Forked from nopfor/ntlm_challenger

    Parse NTLM challenge messages over HTTP and SMB

    blackarrowsec/ntlm_challenger’s past year of commit activity
    Python 2 MIT 25 0 0 Updated Sep 30, 2022
  • Certipy Public Forked from ly4k/Certipy

    Tool for Active Directory Certificate Services enumeration and abuse

    blackarrowsec/Certipy’s past year of commit activity
    Python 1 MIT 347 0 0 Updated Aug 5, 2022
  • Certify Public Forked from GhostPack/Certify

    Active Directory certificate abuse.

    blackarrowsec/Certify’s past year of commit activity
    C# 36 214 0 0 Updated Feb 9, 2022