The LaZagne project is an open source application used to retrieve lots of passwords stored on a local computer. Each software stores its passwords using different techniques (plaintext, APIs, custom algorithms, databases, etc.). This tool has been developed for the purpose of finding these passwords for the most commonly-used software.
LinPEAS is a script that search for possible paths to escalate privileges on Linux/Unix*/MacOS hosts.
winPEAS Windows local privilege escalation vectors
LinEnum LinEnum is a great script to find valuable information from a Linux host
Mimikatz can help you extract passwords and other credentials from Windows environments. It is an extremely popular pen testing tool, having existed for over a decade. Mimikatz is regularly maintained and updated, ensuring that it remains a cutting-edge asset
Metasploit the world’s leading penetration testing framework, created by H.D. Moore in 2003. Metasploit includes about 250 post-exploitation modules that can be used for capturing keystrokes, gathering information on your network, displaying operating system environment variables, and so on.
Impacket is a collection of Python classes for working with network protocols.
The purpose of the Post-Exploitation phase is to determine the value of the machine compromised and to maintain control of the machine for later use. Great resource to help you organize yourself post exploit.
Lateral Movement consists of techniques that adversaries use to enter and control remote systems on a network. Following through on their primary objective often requires exploring the network to find their target and subsequently gaining access to it.