Legion
An open source network penetration testing framework with automatic recon and scanning capabilities.
It's a post-exploitation tool (e.g. Veil-Pillage, smbexec) It's meant to be the 'glue' between exploitation frameworks when pentesting Active Directory It's fully concurrent: you're able to connect, authenticate etc.. to multiple hosts at the same time It has an internal database which is used to store credentials and track users with Administrative privileges It's functionality is based on several other tools and libraries (a list of them are in the Github repo's README) It's opsec safe: everything is either run in memory, enumerated over the network using WinAPI calls or executed using built-in windows tools/features. Part 1, will cover the basics such as using credentials, dumping credentials, executing commands and using the
An open source network penetration testing framework with automatic recon and scanning capabilities.
A project for demonstrating AWS attack techniques with a focus on ethical hacking practices.
Collection of URLs for vulnerable web applications and systems for cybersecurity practice.
Introduction to using GScript for Red Teams
LinEnum is a tool for Linux enumeration that provides detailed system information and performs various checks and tasks.
A macOS Initial Access Payload Generator for penetration testing and red teaming exercises.