Internal Pentest Tools

A collection of Python classes for working with network protocols. Essential for AD attacks (secretsdump, psexec, wmiexec).

pip install impacket

Uses graph theory to reveal the hidden and often unintended relationships within an Active Directory environment.

# Download from GitHub

A swiss army knife for pentesting networks. Enumerates logged on users, spiders SMB shares, executes psexec, and more.

pip install crackmapexec

A LLMNR, NBT-NS and MDNS poisoner. It will answer to specific NBT-NS (NetBIOS Name Service) queries based on their name suffix.

git clone https://github.com/lgandx/Responder

A tool to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory.

# Download binary (Windows)

C# toolset for raw Kerberos interaction and abuses.

# Compile from source

PowerShell tool to gain network situational awareness on Windows domains.

Import-Module PowerView.ps1

The ultimate WinRM shell for hacking/pentesting. Great for persistent shell access.

gem install evil-winrm

An advanced, simple, and lightweight tunneling/pivoting tool that uses a TUN interface.

# Download release

Tool for Active Directory Certificate Services (ADCS) enumeration and abuse.

pip install certipy-ad