foxhaunt Goto Github PK

aclpwn.py

Active Directory ACL exploitation with BloodHound

active-directory-exploitation-cheat-sheet

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

active-directory-exploitation-cheat-sheet-1

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

active-directory-wordlists

Active Directory Wordlists

ad-attack-defense

Attack and defend active directory using modern post exploitation adversary tradecraft activity

aggressor-script

Collection of Aggressor Scripts for Cobalt Strike

ahmyth-android-rat

Android Remote Administration Tool

amsi-bypass-powershell

This repo contains some Amsi Bypass methods i found on different Blog Posts.

androidforensics

LiME, Volatility and custom Python wrapper script for android forensic analysis

ansible-playbooks

Some playbooks to manage some tasks

aquarmoury

My musings in C and offensive tooling

arbitrage-bot-between-uniswap-and-sushiswap-with-flashloans

atomic-red-team

Small and highly portable detection tests based on MITRE's ATT&CK.

av_bypass

Evading Anti-Virus with Unusual Technique

avml

AVML - Acquire Volatile Memory for Linux

awesome-hacker-search-engines

A list of search engines useful during Penetration testing, vulnerability assessments, red team operations, bug bounty and more

awesome-incident-response

A curated list of tools for incident response

awesome-openzeppelin

Blockchain educational resources curated by the OpenZeppelin team

awesome-oscp

A curated list of awesome OSCP resources

awesome-pentest

A collection of awesome penetration testing resources, tools and other shiny things

badblood

BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of the tool is a domain similar to a domain in the real world. After BadBlood is ran on a domain, security analysts and engineers can practice using tools to gain an understanding and prescribe to securing Active Directory. Each time this tool runs, it produces different results. The domain, users, groups, computers and permissions are different. Every. Single. Time.

beginners-guide-to-obfuscation

bloodhound

Six Degrees of Domain Admin

byeintegrity-uac

Bypass UAC by hijacking a DLL located in the Native Image Cache

byeintegrity8-uac

Bypass UAC at any level by abusing the Program Compatibility Assistant with RPC, WDI, and more Windows components

bypass-firewalls-by-dns-history

Firewall bypass script based on DNS history records. This script will search for DNS A history records and check if the server replies for that domain. Handy for bugbounty hunters.

capa

The FLARE team's open-source tool to identify capabilities in executable files.

caplets

caplets and proxy modules.

cheatsheets

Cheat sheets for various projects.

chimera

Chimera is a (shiny and very hack-ish) PowerShell obfuscation script designed to bypass AMSI and commercial antivirus solutions.