Projects in Awesome Lists by NetSPI
A curated list of projects in awesome lists by NetSPI .
https://github.com/netspi/powerupsql
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
Last synced: 15 May 2025
https://github.com/NetSPI/PowerUpSQL
PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server
Last synced: 20 Apr 2025
https://github.com/netspi/microburst
A collection of scripts for assessing Microsoft Azure security
Last synced: 14 May 2025
https://github.com/NetSPI/MicroBurst
A collection of scripts for assessing Microsoft Azure security
Last synced: 20 Mar 2025
https://github.com/netspi/powerhuntshares
PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.
Last synced: 15 May 2025
https://github.com/NetSPI/PESecurity
PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.
Last synced: 05 May 2025
https://github.com/netspi/pesecurity
PowerShell module to check if a Windows binary (EXE/DLL) has been compiled with ASLR, DEP, SafeSEH, StrongNaming, and Authenticode.
Last synced: 12 Apr 2025
https://github.com/NetSPI/goddi
goddi (go dump domain info) dumps Active Directory domain information
Last synced: 07 May 2025
https://github.com/netspi/goddi
goddi (go dump domain info) dumps Active Directory domain information
Last synced: 02 Apr 2025
https://github.com/nVisium/xssValidator
This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
Last synced: 11 Jul 2025
https://github.com/NetSPI/xssValidator
This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
Last synced: 31 Mar 2025
https://github.com/NetSPI/ESC
Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration features. While ESC can be a handy SQL Client for daily tasks, it was originally designed for targeting SQL Servers during penetration tests and red team engagements. The intent of the project is to provide an .exe, but also sample files for execution through mediums like msbuild and PowerShell.
Last synced: 02 Apr 2025
https://github.com/netspi/esc
Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration features. While ESC can be a handy SQL Client for daily tasks, it was originally designed for targeting SQL Servers during penetration tests and red team engagements. The intent of the project is to provide an .exe, but also sample files for execution through mediums like msbuild and PowerShell.
Last synced: 09 Apr 2025
https://github.com/netspi/weblogicpassworddecryptor
PowerShell script and Java code to decrypt WebLogic passwords
Last synced: 07 May 2025
https://github.com/NetSPI/WebLogicPasswordDecryptor
PowerShell script and Java code to decrypt WebLogic passwords
Last synced: 11 Jul 2025
https://github.com/netspi/gcpwn
Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @WebbinRoot
Last synced: 13 Apr 2025
https://github.com/netspi/aws_consoler
A utility to convert your AWS CLI credentials into AWS console access.
Last synced: 06 Apr 2025
https://github.com/NetSPI/aws_consoler
A utility to convert your AWS CLI credentials into AWS console access.
Last synced: 07 May 2025
https://github.com/NetSPI/JavaSerialKiller
Burp extension to perform Java Deserialization Attacks
Last synced: 19 Apr 2025
https://github.com/netspi/javaserialkiller
Burp extension to perform Java Deserialization Attacks
Last synced: 01 Aug 2025
https://github.com/netspi/bof-pe
An example reference design for a proposed BOF PE
Last synced: 11 Mar 2026
https://github.com/netspi/betafast
Vulnerable thick client applications used as examples in the Introduction to Hacking Desktop Applications blog series
Last synced: 26 Apr 2025
https://github.com/netspi/burpcollaboratordnstunnel
A DNS tunnel utilizing the Burp Collaborator
Last synced: 26 Apr 2025
https://github.com/netspi/burpextractor
A Burp extension for generic extraction and reuse of data within HTTP requests and responses.
Last synced: 26 Apr 2025
https://github.com/netspi/sqlc2
SQLC2 is a PowerShell script for deploying and managing a command and control system that uses SQL Server as both the control server and the agent.
Last synced: 13 Sep 2025
https://github.com/NetSPI/AutoDirbuster
Automatically run and save ffuf scans for multiple IPs
Last synced: 14 Jul 2025
https://github.com/netspi/autodirbuster
Automatically run and save ffuf scans for multiple IPs
Last synced: 26 Apr 2025
https://github.com/netspi/powerhunt
PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.
Last synced: 10 Apr 2025
https://github.com/netspi/heapdump-ios
Dump IOS application heap space from memory
Last synced: 25 Jul 2025
https://github.com/netspi/spoofspotter
A tool to catch spoofed NBNS responses.
Last synced: 26 Apr 2025
https://github.com/netspi/jsonbeautifier
JSON Beautifier for Burp written in Java
burp extension json-beautifier netspi
Last synced: 16 Jul 2025
https://github.com/NetSPI/JSONBeautifier
JSON Beautifier for Burp written in Java
burp extension json-beautifier netspi
Last synced: 19 Apr 2025
https://github.com/NetSPI/crossdomainscanner
Python tool for expired domain discovery in crossdomain.xml files
Last synced: 11 Jul 2025
https://github.com/netspi/crossdomainscanner
Python tool for expired domain discovery in crossdomain.xml files
Last synced: 26 Apr 2025
https://github.com/netspi/ps_multicrack
A powershell script for cracking halfLMchall password hashes
Last synced: 26 Apr 2025
https://github.com/netspi/dataloc
Scan MSSQL databases for payment card data without relying on key words
Last synced: 29 Jan 2026
https://github.com/NetSPI/Open-LLM-Security-Benchmark?utm_source=chatgpt.com
Last synced: 18 Jan 2026
https://github.com/netspi/pycroburst
Python implementation of select MicroBurst scripts.
Last synced: 07 Oct 2025
https://github.com/netspi/svnentriesparser
A powershell script to parse SVN entries files into an HTML directory listing
Last synced: 26 Apr 2025
https://github.com/netspi/gppdecrypt
Stand alone script to decrypt GPP cpassword.
Last synced: 09 Sep 2025
https://github.com/netspi/detectionrules
This is a single location to store detection rules of various types.
Last synced: 30 Jan 2026
https://github.com/netspi/custom-passive-scanner
Define custom findings for Burp's Passive Scanner using regex.
Last synced: 24 Oct 2025
https://github.com/netspi/npm-deps-parser
Parses, summarizes, and prints "npm audit" json output to markdown for nVision reports
Last synced: 17 Sep 2025
https://github.com/netspi/scheduled-task
Native Binary for Creating a Scheduled Task
Last synced: 09 Feb 2026
https://github.com/netspi/wikijekylltheme
Wiki theme for various NetSPI wikis
Last synced: 26 Apr 2025
https://github.com/netspi/x509_find_ca
Find CA web servers from x509 certificate properties
active-directory adcs penetration-testing pentesting ssl ssl-certificate tls tls-certificate x509 x509certificates
Last synced: 09 Aug 2025
https://github.com/netspi/inpowerpen
A tool to help the InPenTeam on internal engagements.
Last synced: 01 Aug 2025
https://github.com/netspi/resolve-autoverify
Template for automation of Resolve verification steps.
Last synced: 26 Feb 2025
https://github.com/netspi/masherysigner
Burp extension for Mashery request signing
Last synced: 26 Feb 2025