yaracroft @venom@nanao.cybtex.fr

🛠 Game Of Active Directory

GOAD is a vulnerable Active Directory environement for pentesters. #tools #microsoft #vuln #infosec #informatique

https://github.com/Orange-Cyberdefense/GOAD

🛠 MalSeclogon is a a little tool to « play » with the Seclogon service #tools #windows #vuln #infosec #informatique

https://github.com/antonioCoco/MalSeclogon

🛠 DFSCoerce : PoC for MS-DFSNM coerce authentication using NetrDfsRemoveStdRoot() method #tools #windows #vuln #infosec #informatique

https://github.com/Wh04m1001/DFSCoerce

🛠 New version of TinyCheck with MISP implementation 👍​ #tools #raspberry #network #malware #wireless #infosec #smartphone #informatique

https://github.com/KasperskyLab/TinyCheck/releases/tag/v0.7-test

🛠 DFIR4vSphere is powershell module for VMWare vSphere forensics. #vmware #windows #powershell #tools #infosec #informatique

https://github.com/ANSSI-FR/DFIR4vSphere

🛠 binbloom is able to analyse a raw binary firmware. #firmware #devices #tools #infosec #informatique

https://github.com/quarkslab/binbloom

🛠 DeepSleep is a variant of Gargoyle for x64 to hide memory artifacts using ROP only and PIC. #memory #tools #malware #infosec #informatique

https://github.com/thefLink/DeepSleep

🛠 Hayabusa is a sigma-based threat hunting and fast forensics timeline generator for EVTX files. #rust #tools #infosec #informatique

https://github.com/Yamato-Security/hayabusa

🛠 regipy is a library for parsing offline registry hives. #python #tools #infosec #informatique

https://github.com/mkorman90/regipy

🛠 Mihari is a tool for OSINT based threat hunting. #osint #tools #infosec #informatique

https://github.com/ninoseki/mihari

🛠 Get-UnJlaive is a tool which is able to reconstruct Jlaive (.NET Antivirus Evasion Tool (Exe2Bat)) to original Assembly and stub Assembly. #tools #windows #malware #powershell #infosec #informatique

https://github.com/Dump-GUY/Get-UnJlaive

🛠 Bitlocker key recovery with MemProcFS #tools #infosec #informatique

https://github.com/ufrisk/MemProcFS/wiki/FS_BitLocker

msImpersonate is a Python-native user impersonation tool that is capable of impersonating local or network user accounts with valid credentials. #tools #python #infosec #informatique

https://github.com/dievus/msImpersonate

🏴‍☠️ ransomwatch

onion-routing ransomware blog indexer & aggregator

#tools #tor #cyber #threats #monitoring #ransomware #infosec #informatique

https://github.com/thetanz/ransomwatch

ldapsearch

Basic Usage

• LDAP Search Filters
• Interesting Attributes
• Null Session Starting

Interesting Searches

• LAPs Passwords
• BitLocker Recovery Passwords
• GMSA NT Hash
• CA & Templates
• Nested Group Membership
• Find Exchange Servers
• Deleted / Tombstoned objects
• Replication Metadata

#tools #windows #software #perl #informatique

https://malicious.link/post/2022/ldapsearch-reference/

🔧 Cooper

A fuzzing tool for effective testing the binding layer of scripting languages

#tools #python #informatique

https://github.com/TCA-ISCAS/Cooper

📰 https://huhong789.github.io/papers/xu:cooper.pdf

🔧 PassTheCert

A small PoC tool that allows authenticating against an LDAP/S server with a certificate.

#tools #infosec #informatique

🔧 pyCobaltHound

An aggressor script extension for Cobalt Strike which aims to provide a deep integration between Cobalt Strike and Bloodhound

#tools #python #infosec #informatique

https://github.com/NVISOsecurity/pyCobaltHound

🔧 SMB Session Spoofing

Spoof SMB user sessions drawing attackers to a honey workstation.

#tools #infosec #informatique

https://github.com/Sq00ky/SMB-Session-Spoofing

🔧 dumpulator is an easy-to-use library for emulating code in minidump files. #python #tools #debugger #windows #infosec #informatique #informatique

https://github.com/mrexodia/dumpulator