DNS Triage
DNS Triage checks:
- DNS records
- Selected subdomains – chosen for high value and frequency
- Third-party services
Get it here: https://github.com/Wh1t3Rh1n0/dns-triage
DomainPasswordSpray
DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
Get it here: https://github.com/dafthack/DomainPasswordSpray
Eavesarp-NG
Eavesarp-NG is a Go-based tool to detect and exploit Stale Network Address Configurations (SNACs) via network traffic analysis and ARP poisoning techniques, designed for security researchers and network administrators.
Get it here: https://github.com/ImpostorKeanu/eavesarp-ng
GoSplit
GoSplit is a simple TLS-aware TCP proxy that can be used to extract cleartext data from TLS tunnels.
Get it here: https://github.com/ImpostorKeanu/gosplit
GraphRunner
GraphRunner is a post-exploitation toolset for interacting with the Microsoft Graph API. It provides various tools for performing reconnaissance, persistence, and pillaging of data from a Microsoft Entra ID (Azure AD) account.
Get it here: https://github.com/dafthack/GraphRunner
Ice Scraper
Ice Scraper is a tool to perform bulk collection of employee names (and sometimes titles, location, etc.) from open source intelligence sources on the internet.
Get it here: https://github.com/Wh1t3Rh1n0/IceScraper
MFASweep
MFASweep is a PowerShell script that attempts to log into various Microsoft services using a provided set of credentials and will attempt to identify if MFA is enabled.
Get it here: https://github.com/dafthack/MFASweep
MSOLSpray
A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the account, if a tenant doesn’t exist, if a user doesn’t exist, if the account is locked, or if the account is disabled.
Get it here: https://github.com/dafthack/MSOLSpray
PowerMeta
PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google and Bing searches. It then allows for the download of those files from the target domain. After retrieving the files, the metadata associated with them can be analyzed by PowerMeta.
Get it here: https://github.com/dafthack/PowerMeta
RITA
Real Intelligence Threat Analytics. RITA is an open source framework for network traffic analysis.
Get it here: https://github.com/activecm/rita
Skyhook
Skyhook is a REST-driven utility used to smuggle files into and out of networks defended by IDS implementations.
Get it here: https://github.com/blackhillsinfosec/skyhook
SlackEnum
SlackEnum is a user enumeration tool for Slack.
Get it here: https://github.com/Wh1t3Rh1n0/SlackEnum
SMB-deploy
Batch files to easily test and log write access to SMB shared folders.
Get it here: https://github.com/Wh1t3Rh1n0/smb-deploy
SpiderTrap
Spidertrap is a Python program which dynamically generates an infinite number of hyper-linked pages in order to trap webcrawlers.
Get it here: https://bitbucket.org/ethanr/spidertrap/src/master/
Test Files
Test files of multiple types that can be used to deliver executable payloads.
Get it here: https://github.com/Wh1t3Rh1n0/test-files
WiFi-Forge
WiFi-Forge provides a safe and legal environment for learning WiFi hacking. Based on the open-source mininet-wifi, this project automatically sets up the networks and tools needed to run a variety of WiFi exploitation labs, removing the need for the overhead and hardware normally required to perform these attacks.
Get it here: https://github.com/blackhillsinfosec/WifiForge