Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but for security research and penetration testing! 🎫

C# 164 17 Updated Oct 21, 2025

bytewreck / DumpGuard

Proof-of-Concept tool for extracting NTLMv1 hashes from sessions on modern Windows systems.

C 582 57 Updated Oct 27, 2025

xforcered / RemoteMonologue

Forked from 3lp4tr0n/RemoteMonologue

Weaponizing DCOM for NTLM Authentication Coercions

Python 275 23 Updated Jul 1, 2025

jiansiting / CVE-2025-59287

WSUS Unauthenticated RCE

Python 169 22 Updated Oct 28, 2025

hegdepavankumar / Cisco-Images-for-GNS3-and-EVE-NG

Free Images for EVE-NG and GNS3 containing routers, switches,Firewalls and other appliances, including Cisco, Fortigate, Palo Alto, Sophos and more. Master the art of networking and improve your sk…

HTML 2,120 471 Updated Mar 14, 2025

killmonday / fscanx

让fscan再次伟大

Go 322 34 Updated Feb 10, 2026

cogiceo / DACLSearch

Exhaustive search and flexible filtering of Active Directory ACEs.

Python 74 11 Updated Nov 10, 2025

ufrisk / MemProcFS

MemProcFS

C 4,011 510 Updated Feb 7, 2026

adysec / nuclei_poc

Nuclei POC，每2小时更新 | 自动整合全网Nuclei的漏洞POC，实时同步更新最新POC，保存已被删除的POC。通过批量克隆Github项目，获取Nuclei POC，并将POC按类别分类存放，使用Github Action实现。已有41w+POC，其中3.5w+高质量POC

1,932 530 Updated Feb 19, 2026

dirkjanm / scepreq

SCEP request tool for AD CS and Intune

Python 73 5 Updated Oct 24, 2025

itgoyo / TelegramGroup

2026最新悄咪咪收集的10000+个Telegram群合集、tg导航，附全网最有趣好用的机器人BOT🤖【tg10000.com】

3,582 224 Updated Feb 8, 2026

sud0Ru / NauthNRPC

Enumerate Domain Users Without Authentication

Python 281 25 Updated Apr 22, 2025

zyn3rgy / LdapRelayScan

Check for LDAP protections regarding the relay of NTLM authentication

Python 534 81 Updated Nov 19, 2024

K1tt3h / CVE-2025-32463-POC

CVE-2025-32463 Proof of concept

Shell 24 3 Updated Jul 1, 2025

rtecCyberSec / BitlockMove

Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking

C# 436 53 Updated Jun 27, 2025

teamssix / awesome-cloud-security

awesome cloud security 收集一些国内外不错的云安全资源，该项目主要面向国内的安全人员

2,057 232 Updated Oct 28, 2024

tonybaloney / vscode-pets

Adds playful pets 🦀🐱🐶 in your VS Code window

TypeScript 3,979 503 Updated Feb 17, 2026

RedByte1337 / GraphSpy

Initial Access and Post-Exploitation Tool for AAD and O365 with a browser-based GUI

HTML 1,032 121 Updated Dec 31, 2025

SleepingBag945 / CVE-2024-50379

tomcat CVE-2024-50379/CVE-2024-56337 条件竞争文件上传exp

Go 85 18 Updated Dec 23, 2024

Offensive-Panda / ShadowDumper

Shadow Dumper is a powerful tool used to dump LSASS memory, often needed in penetration testing and red teaming. It uses multiple advanced techniques to dump memory, allowing to access sensitive da…

C++ 571 91 Updated May 22, 2025

howmp / reality

grs内网穿透工具通过reality协议隐藏特征

Go 610 57 Updated Dec 4, 2025

xaitax / Chrome-App-Bound-Encryption-Decryption

Bypass Chromium's App-Bound Encryption via Direct Syscall-based Reflective Process Hollowing. Extract cookies, passwords, payment methods & tokens from Chrome, Edge, Brave & Avast - fileless, user-…

C 1,400 236 Updated Feb 9, 2026

Maldev-Academy / EmbedPayloadInPng

Embed a payload inside a PNG file

C 368 55 Updated Oct 24, 2024

spyboy-productions / CloakQuest3r

Open-source security research tool for identifying origin IP exposure of websites protected by Cloudflare and similar reverse proxy services.

Python 2,099 291 Updated Jan 6, 2026

ImCoriander / Go-Packer-Loaders

快速Go建你的免杀项目

Go 26 2 Updated Sep 20, 2024

Y2Z / monolith

⬛️ CLI tool and library for saving complete web pages as a single HTML file

Rust 14,754 439 Updated Feb 5, 2026

UnknowSec

Lists (10)

AzureAD

Bypass

C2

Golang Study

Intranet Penetration

Java Tools

Others

POC&EXP

Proxy Forwarding

Web Tools

Stars