Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

SharpUp is a C# port of various PowerUp functionality.

Some usefull Scripts and Executables for Pentest & Forensics

Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.

Inno Setup is a free installer for Windows programs. First introduced in 1997, Inno Setup today rivals and even surpasses many commercial installers in feature set and stability.

It's a go variant of Hells gate! (directly calling windows kernel functions, but from Go!)

Fileless atexec, no more need for port 445

Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure DevOps release pipelines.

Nim-based assembly packer and shellcode loader for opsec & profit

StandIn is a small .NET35/45 AD post-exploitation toolkit

Self-hosted file/code/media sharing website.

BloodyAD is an Active Directory Privilege Escalation Framework

Fileless lateral movement tool that relies on ChangeServiceConfigA to run command

The ultimate WinRM shell for hacking/pentesting

Looks for a configuration file in various formats and reads it into a configuration object.

Parses command-line arguments to statically typed options with the help of usage description.

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

PoC to record audio from a Bluetooth device

Adversary Emulation Framework

Multi-cloud OSINT tool. Enumerate public resources in AWS, Azure, and Google Cloud.

A modern and intuitive terminal-based text editor

Utilities for interacting with the underlying operating system.

Powershell tool to automate Active Directory enumeration.

ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping to NDJSON.

Impacket is a collection of Python classes for working with network protocols.

Native Ghidra Decompiler for r2

Delve is a debugger for the Go programming language.