Smap is a replica of Nmap which uses shodan.io's free API for port scanning. It takes same command line arguments…
ADReaper is a tool written in Golang which enumerates an Active Directory environment with LDAP queries within few seconds Installation You can download…
KrbRelay should be working on most fully patched Windows systems. There may be difficulties with Server OS in lab environments…
Zircolite is a standalone tool written in Python 3. It allows to use SIGMA rules on MS Windows EVTX (EVTX…
linWinPwn is a bash script that automates a number of Active Directory Enumeration and Vulnerability checks. The script leverages and…
OWASP Coraza Web Application Firewall, OWASP Coraza is a golang enterprise-grade Web Application Firewall framework that supports Modsecurity's seclang language…
Kraken is an online distributed brute force password cracking tool. It allows you to parallelize dictionaries and crunch word generator…
vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios in the means…
EDRSandBlast is a tool written in C that weaponize a vulnerable signed driver to bypass EDR detections (Kernel callbacks and ETW TI provider) and LSASS protections. Multiple…
365Inspect requires the administrative PowerShell modules for Microsoft Online, Azure AD (We recommend installing the AzureADPreview module), Exchange administration, Microsoft Graph,…