Random Scripts

A dumping ground for little helpers

Here's a few highlights that I use frequently:

sendmails.py

Versatile mail spoofing script for phishing campaigns.

relaysend.py

Test internal / open mail relays in infrastructure tests.

ntlm-botherer.py

Info-leak and dictionary attack tool for NTLM authed web resources.

dictionary-grepper.py

Take a large password dictionary and apply filters to match your target password policy.

basic-batch.py

Password spray against various basic auth URLs

shell.py

Finding a python interpreter on an endpoint is increasingly common and great for bypassing allow-listing. This provides a reasonably powerful CLI to do filesystem stuff, port scanning and process injection. Very useful!