CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost - danigargu/CVE-2020-0796

Contribute to vanhoefm/dragonslayer development by creating an account on GitHub.

Dump of win32k POCs for bugs I've found. Contribute to gdabah/win32k-bugs development by creating an account on GitHub.

Power tools for Kubernetes and AI agents. With over 1 million users, Lens is the new standard for Kubernetes operators and AI agent teams.

Passhunt is a simple tool for searching of default credentials for network devices, web applications and more. Search through 523 vendors and their 2084 default passwords. - Viralmaniar/Passhunt

Red Teaming Tactics and Techniques. Contribute to mantvydasb/RedTeaming-Tactics-and-Techniques development by creating an account on GitHub.

Mimikatz is playing a vital role in every internal penetration test or red team engagement mainly for its capability to extract passwords…

Mentalist is a graphical tool for custom wordlist generation. It utilizes common human paradigms for constructing passwords and can output the full wordlist as well as rules compatible with Hashcat...

File upload vulnerability scanner and exploitation tool. - almandin/fuxploider

A repository of Windows Shellcode runners and supporting utilities. The applications load and execute Shellcode using various API calls or techniques. - Ne0nd0g/go-shellcode

The Post describe basic steps i follow before starting actual hunt for bugs in a bug bounty program, how i map out the target and which tools to use.

At Black Hat USA 2015 this summer (2015), I spoke about the danger in having Kerberos Unconstrained Delegation configured in the environment. When Active Directory was first released with Windows 2000 Server, Microsoft had to provide a simple mechanism to…

large hashcat rulesets generated from real-world compromised passwords - rarecoil/pantagrule

Socks5/4/4a Proxy support for Remote Desktop Protocol / Terminal Services / Citrix / XenApp / XenDesktop - nccgroup/SocksOverRDP