Skip to content

Resources update 01-May-26 #65

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
github-actions wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Resources update 01-May-26 #65

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1,019 changes: 695 additions & 324 deletions linux/linPEAS/linpeas.sh
View file
Open in desktop

Large diffs are not rendered by default.

Binary file modified linux/linPEAS/linpeas_darwin_amd64
View file
Open in desktop
Binary file not shown.
Binary file modified linux/linPEAS/linpeas_darwin_arm64
View file
Open in desktop
Binary file not shown.
Binary file modified linux/linPEAS/linpeas_linux_386
View file
Open in desktop
Binary file not shown.
Binary file modified linux/linPEAS/linpeas_linux_amd64
View file
Open in desktop
Binary file not shown.
Binary file modified linux/linPEAS/linpeas_linux_arm
View file
Open in desktop
Binary file not shown.
Binary file modified linux/linPEAS/linpeas_linux_arm64
View file
Open in desktop
Binary file not shown.
2 changes: 1 addition & 1 deletion windows/GitHound
Open in desktop
Submodule GitHound updated 84 files
+5 −1 .gitignore
+17 −0 Documentation/EdgeDescriptions/GH_AssignedTo.md
+27 −0 Documentation/EdgeDescriptions/GH_CallsWorkflow.md
+26 −0 Documentation/EdgeDescriptions/GH_CanDispatchTo.md
+4 −2 Documentation/EdgeDescriptions/GH_CanEditProtection.md
+66 −0 Documentation/EdgeDescriptions/GH_CanPwnRequest.md
+24 −0 Documentation/EdgeDescriptions/GH_CanUseRunner.md
+11 −9 Documentation/EdgeDescriptions/GH_Contains.md
+19 −0 Documentation/EdgeDescriptions/GH_DependsOn.md
+17 −0 Documentation/EdgeDescriptions/GH_DeploysTo.md
+1 −1 Documentation/EdgeDescriptions/GH_HasExternalIdentity.md
+19 −0 Documentation/EdgeDescriptions/GH_HasJob.md
+21 −0 Documentation/EdgeDescriptions/GH_HasMember.md
+6 −3 Documentation/EdgeDescriptions/GH_HasRole.md
+4 −2 Documentation/EdgeDescriptions/GH_HasSamlIdentityProvider.md
+21 −0 Documentation/EdgeDescriptions/GH_HasStep.md
+8 −2 Documentation/EdgeDescriptions/GH_MapsToUser.md
+7 −3 Documentation/EdgeDescriptions/GH_MemberOf.md
+35 −0 Documentation/EdgeDescriptions/GH_UsesSecret.md
+35 −0 Documentation/EdgeDescriptions/GH_UsesVariable.md
+45 −0 Documentation/EdgeDescriptions/SCIM_Provisioned.md
+ Documentation/Icons/GH_Enterprise.png
+ Documentation/Icons/GH_EnterpriseRole.png
+ Documentation/Icons/GH_EnterpriseTeam.png
+ Documentation/Icons/GH_WorkflowJob.png
+ Documentation/Icons/GH_WorkflowStep.png
+ Documentation/Icons/gh_app.png
+ Documentation/Icons/gh_appinstallation.png
+ Documentation/Icons/gh_branch.png
+ Documentation/Icons/gh_branchprotectionrule.png
+ Documentation/Icons/gh_enterprisemanageduser.png
+ Documentation/Icons/gh_environment.png
+ Documentation/Icons/gh_environmentsecret.png
+ Documentation/Icons/gh_environmentvariable.png
+ Documentation/Icons/gh_externalidentity.png
+ Documentation/Icons/gh_organization.png
+ Documentation/Icons/gh_orgrole.png
+ Documentation/Icons/gh_orgrunner.png
+ Documentation/Icons/gh_orgsecret.png
+ Documentation/Icons/gh_orgvariable.png
+ Documentation/Icons/gh_personalaccesstoken.png
+ Documentation/Icons/gh_personalaccesstokenrequest.png
+ Documentation/Icons/gh_reporole.png
+ Documentation/Icons/gh_reporunner.png
+ Documentation/Icons/gh_reposecret.png
+ Documentation/Icons/gh_repository.png
+ Documentation/Icons/gh_repovariable.png
+ Documentation/Icons/gh_runnergroup.png
+ Documentation/Icons/gh_samlidentityprovider.png
+ Documentation/Icons/gh_secretscanningalert.png
+ Documentation/Icons/gh_team.png
+ Documentation/Icons/gh_teamrole.png
+ Documentation/Icons/gh_user.png
+ Documentation/Icons/gh_workflow.png
+1 −1 Documentation/NodeDescriptions/GH_AppInstallation.md
+50 −0 Documentation/NodeDescriptions/GH_Enterprise.md
+36 −0 Documentation/NodeDescriptions/GH_EnterpriseManagedUser.md
+40 −0 Documentation/NodeDescriptions/GH_EnterpriseRole.md
+46 −0 Documentation/NodeDescriptions/GH_EnterpriseTeam.md
+8 −4 Documentation/NodeDescriptions/GH_ExternalIdentity.md
+1 −1 Documentation/NodeDescriptions/GH_OrgRole.md
+37 −0 Documentation/NodeDescriptions/GH_OrgRunner.md
+9 −1 Documentation/NodeDescriptions/GH_Organization.md
+2 −1 Documentation/NodeDescriptions/GH_RepoRole.md
+35 −0 Documentation/NodeDescriptions/GH_RepoRunner.md
+7 −1 Documentation/NodeDescriptions/GH_Repository.md
+36 −0 Documentation/NodeDescriptions/GH_RunnerGroup.md
+6 −4 Documentation/NodeDescriptions/GH_SamlIdentityProvider.md
+1 −1 Documentation/NodeDescriptions/GH_SecretScanningAlert.md
+7 −4 Documentation/NodeDescriptions/GH_Team.md
+3 −3 Documentation/NodeDescriptions/GH_TeamRole.md
+8 −4 Documentation/NodeDescriptions/GH_User.md
+1 −1 Documentation/NodeDescriptions/GH_Workflow.md
+40 −0 Documentation/NodeDescriptions/GH_WorkflowJob.md
+42 −0 Documentation/NodeDescriptions/GH_WorkflowStep.md
+74 −15 Documentation/Queries.md
+107 −0 Documentation/SCIMSamlProviderComparison.md
+48 −27 Documentation/Schema.md
+148 −0 README.md
+4,297 −356 githound.ps1
+228 −0 model.json
+1 −1 pz-rules/t0-all-repo-admin-role.json
+146 −6 schema.json
+42 −11 scripts/render_icons.py
2 changes: 1 addition & 1 deletion windows/MSSQLHound
Open in desktop
Submodule MSSQLHound updated 80 files
+205 −0 .claude/plans/integration_test_ci.md
+151 −0 .claude/plans/logging.md
+226 −0 .claude/plans/nthash_kerberos.md
+158 −0 .claude/plans/release_workflow.md
+96 −0 .claude/plans/tds_epa_support.md
+255 −0 .github/workflows/ci.yml
+113 −0 .github/workflows/release.yml
+6 −0 .gitignore
+21 −0 CLAUDE.md
+152 −0 CONTRIBUTING.md
+202 −674 LICENSE
+1,339 −552 README.md
+3 −0 RELEASE_NOTES.md
+411 −0 TESTING.md
+365 −490 arrows.json
+67 −0 cmd/mssqlhound/cmd_completion.go
+220 −0 cmd/mssqlhound/cmd_test_epa_matrix.go
+548 −0 cmd/mssqlhound/main.go
+301 −0 cmd/mssqlhound/main_test.go
+43 −0 go.mod
+163 −0 go.sum
+1,128 −0 internal/ad/client.go
+262 −0 internal/ad/gssapi_krb5.go
+14 −0 internal/ad/gssapi_nonwindows.go
+58 −0 internal/ad/gssapi_windows.go
+24 −0 internal/ad/sid_nonwindows.go
+144 −0 internal/ad/sid_windows.go
+1,392 −0 internal/bloodhound/edges.go
+259 −0 internal/bloodhound/schema.json
+2 −2 internal/bloodhound/seed_data.json
+550 −0 internal/bloodhound/writer.go
+6,575 −0 internal/collector/collector.go
+1,073 −0 internal/collector/collector_test.go
+310 −0 internal/collector/cve.go
+267 −0 internal/collector/cve_test.go
+632 −0 internal/collector/edge_integration_test.go
+728 −0 internal/collector/edge_test_data_test.go
+872 −0 internal/collector/edge_test_helpers_test.go
+1,752 −0 internal/collector/edge_unit_test.go
+447 −0 internal/collector/integration_report_test.go
+636 −0 internal/collector/integration_setup_test.go
+2,981 −0 internal/collector/integration_sql_test.go
+340 −0 internal/epamatrix/epamatrix.go
+102 −0 internal/epamatrix/registry.go
+67 −0 internal/epamatrix/table.go
+280 −0 internal/logging/handler.go
+60 −0 internal/logging/multi_handler.go
+91 −0 internal/logging/multi_handler_test.go
+18 −0 internal/logging/terminal_other.go
+38 −0 internal/logging/terminal_windows.go
+3,262 −0 internal/mssql/client.go
+435 −0 internal/mssql/db_wrapper.go
+116 −0 internal/mssql/epa_auth_provider.go
+1,092 −0 internal/mssql/epa_tester.go
+281 −0 internal/mssql/krb5_auth_provider.go
+49 −0 internal/mssql/krb5_config.go
+819 −0 internal/mssql/ntlm_auth.go
+302 −0 internal/mssql/ntlm_auth_test.go
+286 −0 internal/mssql/powershell_fallback.go
+222 −0 internal/mssql/tds_transport.go
+66 −0 internal/proxydialer/proxydialer.go
+239 −0 internal/types/types.go
+109 −0 internal/uploader/auth.go
+164 −0 internal/uploader/auth_test.go
+257 −0 internal/uploader/client.go
+274 −0 internal/uploader/client_test.go
+94 −0 internal/uploader/integration_test.go
+104 −0 internal/uploader/uploader.go
+171 −0 internal/uploader/uploader_test.go
+197 −0 internal/winrmclient/winrmclient.go
+24 −0 internal/wmi/wmi_stub.go
+150 −0 internal/wmi/wmi_windows.go
+0 −0 powershell_deprecated/Invoke-MSSQLHoundUnitTests.ps1
+368 −189 powershell_deprecated/MSSQLHound.ps1
+ sample_data/mssql-bloodhound-20260115-105846.zip
+1 −1 saved_queries/MSSQL_ Domain Principals that Can Coerce and Relay to MSSQL.json
+1 −1 saved_queries/MSSQL_ Domain Principals with Control of MSSQL Databases.json
+1 −1 saved_queries/MSSQL_ Domain Principals with Control of MSSQL Servers.json
+1 −1 saved_queries/MSSQL_ Domain Principals with Path to SQL Servers.json
+699 −0 util/compare_edges.py
2 changes: 1 addition & 1 deletion windows/PrivescCheck
Open in desktop
Submodule PrivescCheck updated 26 files
+17 −0 .github/workflows/build.yml
+18 −0 .github/workflows/clean_up_release_and_tag_history.sh
+1 −0 .vscode/settings.json
+126 −30 build/Build.ps1
+55 −6 build/BuildProfiles.json
+1 −1 build/Seed.txt
+0 −42 dist/PrivescCheck.ps1
+38 −0 info/CHANGELOG.md
+53 −20 src/check/Hardening.ps1
+31 −42 src/check/Main.ps1
+346 −0 src/check/Misc.AccessControl.ps1
+378 −0 src/check/Misc.Environment.ps1
+114 −0 src/check/Misc.Msi.ps1
+389 −0 src/check/Misc.SystemInformation.ps1
+0 −1,230 src/check/Misc.ps1
+2 −2 src/core/Compression.ps1
+48 −0 src/core/Reflection.DynamicModule.ps1
+93 −0 src/core/Reflection.Enum.ps1
+49 −0 src/core/Reflection.Function.ps1
+208 −0 src/core/Reflection.Structure.ps1
+190 −0 src/core/Reflection.Win32Type.ps1
+0 −592 src/core/Reflection.ps1
+18 −18 src/core/WinApi.ps1
+18 −0 src/helper/AccessControl.ps1
+1 −1 src/helper/SystemInformation.ps1
+1 −0 test/ScriptAnalyzerSettings.psd1
2 changes: 1 addition & 1 deletion windows/SharpCollection
Open in desktop
Submodule SharpCollection updated 3 files
+ NetFramework_4.7_Any/winPEAS.exe
+ NetFramework_4.7_x64/winPEAS.exe
+ NetFramework_4.7_x86/winPEAS.exe
2 changes: 1 addition & 1 deletion windows/SnowHound
Open in desktop
Submodule SnowHound updated 29 files
+16 −14 Documentation/COLLECTOR.md
+2 −2 Documentation/EdgeDescriptions/SNOW_RunAsRole.md
+17 −0 Documentation/EdgeDescriptions/SNOW_UsesStorageIntegration.md
+ Documentation/Icons/SNOW_ApiIntegration.png
+ Documentation/Icons/SNOW_CatalogIntegration.png
+ Documentation/Icons/SNOW_ExternalAccessIntegration.png
+ Documentation/Icons/SNOW_NotificationIntegration.png
+ Documentation/Icons/SNOW_SecurityIntegration.png
+ Documentation/Icons/SNOW_StorageIntegration.png
+24 −24 Documentation/NAMING_CONVENTION.md
+2 −2 Documentation/NodeDescriptions/SNOW_Account.md
+45 −0 Documentation/NodeDescriptions/SNOW_ApiIntegration.md
+45 −0 Documentation/NodeDescriptions/SNOW_CatalogIntegration.md
+45 −0 Documentation/NodeDescriptions/SNOW_ExternalAccessIntegration.md
+2 −2 Documentation/NodeDescriptions/SNOW_Integration.md
+45 −0 Documentation/NodeDescriptions/SNOW_NotificationIntegration.md
+47 −0 Documentation/NodeDescriptions/SNOW_SecurityIntegration.md
+3 −1 Documentation/NodeDescriptions/SNOW_Stage.md
+48 −0 Documentation/NodeDescriptions/SNOW_StorageIntegration.md
+2 −0 Documentation/NodeDescriptions/SNOW_User.md
+98 −0 Documentation/SNOWFLAKE_CLI_KEYPAIR_AUTH.md
+15 −6 README.md
+15 −0 TODO.MD
+42 −0 model.json
+15 −1 model.mermaid
+0 −1,734 samples/example.json
+65,443 −0 samples/snowhound_NR46411.CGXOVHZ.json
+63 −751 schema.json
+259 −61 snowhound.ps1
Binary file modified windows/SysinternalsSuite/procexp.exe
View file
Open in desktop
Binary file not shown.
Binary file modified windows/SysinternalsSuite/procexp64.exe
View file
Open in desktop
Binary file not shown.
2 changes: 2 additions & 0 deletions windows/winPEAS/winPEAS.bat
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -58,6 +58,8 @@ CALL :ColorLine " %E%41mWinPEAS should be used for authorized penetration test
CALL :ColorLine " %E%41mAny misuse of this software will not be the responsibility of the author or of any other collaborator.%E%40;97m"
CALL :ColorLine " %E%41mUse it at your own networks and/or with the network owner's permission.%E%40;97m"
ECHO.
ECHO. [i] Best Linux PE and hardening course: https://hacktricks-training.com/courses/lhe/
ECHO.

:SystemInfo
CALL :ColorLine "%E%32m[*]%E%97m BASIC SYSTEM INFO"
Expand Down
1 change: 1 addition & 0 deletions windows/winPEAS/winPEAS.ps1
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -795,6 +795,7 @@ Write-Host -ForegroundColor Blue "Indicates title"


Write-Host "You can find a Windows local PE Checklist here: https://book.hacktricks.wiki/en/windows-hardening/checklist-windows-privilege-escalation.html" -ForegroundColor Yellow
Write-Host "Best Linux PE & Hardening course: https://hacktricks-training.com/courses/lhe/" -ForegroundColor Yellow
#write-host "Creating Dynamic lists, this could take a while, please wait..."
#write-host "Loading sensitive_files yaml definitions file..."
#write-host "Loading regexes yaml definitions file..."
Expand Down
Binary file modified windows/winPEAS/winPEASany.exe
View file
Open in desktop
Binary file not shown.
Binary file modified windows/winPEAS/winPEASany_ofs.exe
View file
Open in desktop
Binary file not shown.
Binary file modified windows/winPEAS/winPEASx64.exe
View file
Open in desktop
Binary file not shown.
Binary file modified windows/winPEAS/winPEASx64_ofs.exe
View file
Open in desktop
Binary file not shown.
Binary file modified windows/winPEAS/winPEASx86.exe
View file
Open in desktop
Binary file not shown.
Binary file modified windows/winPEAS/winPEASx86_ofs.exe
View file
Open in desktop
Binary file not shown.