504 Open source projects that are alternatives of or similar to PowEnum

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Username enumeration and password spraying tool aimed at Microsoft O365.

Modern alternative to dirbuster/dirb

A next generation version of enum4linux (a Windows/Samba enumeration tool) with additional features like JSON/YAML export. Aimed for security professionals and CTF players.

Bash script purposed for system enumeration, vulnerability identification and privilege escalation.

Intelligence and Reconnaissance Package/Bundle installer.

Brute force attack tool for Azure AD Autologon/Seamless SSO - Source: https://arstechnica.com/information-technology/2021/09/new-azure-active-directory-password-brute-forcing-flaw-has-no-fix/

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.

A fast, simple, recursive content discovery tool written in Rust.

This repository contains writeups for various CTFs I've participated in (Including Hack The Box).

DLL Password Filter Implant with Exfiltration Capabilities

RedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.

A (partial) Python rewriting of PowerSploit's PowerView

Leverage ASN to look up IP addresses (IPv4 & IPv6) owned by a specific organization for reconnaissance purposes, then run port scanning on it.

Enumerate AD through LDAP with a collection of helpfull scripts being bundled

Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.

A tool to enumerate network services

This powershell script has got to run in remote hacked windows host, even for pivoting

A proof of concept crypto virus to spread user awareness about attacks and implications of ransomwares. Phirautee is written purely using PowerShell and does not require any third-party libraries. This tool steals the information, holds an organisation’s data to hostage for payments or permanently encrypts/deletes the organisation data.

Wordlists and passwords handcrafted with ♥

Script will enumerate domain name using horizontal enumeration, reverse lookup. Each horziontal domain will then be vertically enumerated using Sublist3r.

The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.

Manage your gitlab groups with ldap / active directory

SMTP and IMAP checker / cracker for mailpass combolists with a user-friendly GUI, automated inbox test and many more features.

My notebook for OSCP Lab

Terribad PrivEsc enumeration script for Windows systems

NoneAge Blockchain Security Tutorial

All in One CRACKER911181's Tool. This Tool For Hacking and Pentesting. 🎭

ASP.NET Core Active Directory authentication use LDAP

Authentication classes to be used with httpx

onedrive user enumeration - pentest tool to enumerate valid onedrive users

A Collection of Notes, Checklists, Writeups on Bug Bounty Hunting and Web Application Security.

List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.

Script for Local Windows Enumeration

An enum generator for Go

Kubernetes Identity Management Lab

Active Directory bridging tool suite

Ladon Moudle MS17010 Exploit for PowerShell

Kali Live Build Scripts

Security program for recovering passwords and pen-testing servers, routers and IoT devices using brute-force password attacks.

⚫ Curso GRÁTIS SAMBA-4 UCS Univention Core Free 5.x Domain Controller Active Directory Open Source

Reconky is an great Content Discovery bash script for bug bounty hunters which automate lot of task and organized in the well mannered form which help them to look forward.

PowerShell scripts that generate Graphical User Interface (GUI)

AD Security Intrusion Detection System

A very loud but fast recon scan and pentest template creator for use in CTF's/OSCP/Hackthebox...

This program focuses on automating the download, installation and compilation of pentest tools from source

Active directory Join script for Ubuntu, Debian, CentOS, Linux Mint, Fedora, Kali, Elementary OS and Raspbian with built in failchcheck and debugmode for Ubuntu. "The most advanced and updated AD join script on GITHUB for Linux"

PowerShell script to email users that their password is soon expiring, along with info on how to change it. Designed to run as a scheduled task on a machine with the Active Directory PowerShell module installed.

Common Web Managers Fuzz Wordlists

d(ockerp)wn - a docker pwn tool manager

Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too!

A collection of special paths linked to major web CVEs, known misconfigurations, juicy APIs ..etc. It could be used as a part of web content discovery, to scan passively for high-quality endpoints and quick-wins.

A way to manage Group Policy Preferences through PowerShell

The ldap2json script allows you to extract the whole LDAP content of a Windows domain into a JSON file.

Framework for rapid development and reusable of security tools

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

Scan for and exploit Consul agents

Python AV Evasion Tools

Misc. Public Reports of Penetration Testing and Security Audits.