* https://github.com/quentinhardy/odat

* clusterd framework, attacking JBoss, CF, WebLogic, Tomcat, Railo, Axis2, Glassfish:

* https://github.com/hatRiot/clusterd

* JexBoss - Jboss verify and EXploitation Tool:

* https://github.com/joaomatosf/jexboss

* The Backdoor Factory Proxy (BDFProxy):

* https://github.com/secretsquirrel/BDFProxy

* impacket:

* https://github.com/CoreSecurity/impacket

* CrackMapExec Windows/Active Directory swiss army knife:

* https://github.com/byt3bl33d3r/CrackMapExec

* commix:

* https://github.com/stasinopoulos/commix

* beef-drive, beef framework with WebRTC:

* https://github.com/tsu-iscd/beef-drive

* VirtuaPlant Industrial Control Systems simulator:

* https://github.com/jseidl/virtuaplant

* Responder, LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication:

* https://github.com/SpiderLabs/Responder

* WSUSpect Proxy - a tool for MITM'ing insecure WSUS connections:

* https://github.com/ctxis/wsuspect-proxy

* Potato, NTLM relay PrivEsc:

* https://github.com/foxglovesec/Potato

* jdwp-shellifier (Java Debug Wire Protocol):

* https://github.com/stufus/jdwp-shellifier

* foxglovesec JavaUnserializeExploits:

* https://github.com/foxglovesec/JavaUnserializeExploits

* KeeFarce, extraction of KeePass 2.x password database information from memory:

* https://github.com/denandz/KeeFarce

* Wolves Among the Sheep, MD5 hash collision:

* https://github.com/silentsignal/sheep-wolf/

* TDL (Turla Driver Loader). Driver loader for bypassing Windows x64 Driver Signature Enforcement:

* https://github.com/hfiref0x/TDL