| Tool | Purpose | Docs |
|---|---|---|
| CredWolf | Validate AD credentials over NTLM and Kerberos -- passwords, hashes, keys, tickets | |
| KerbWolf | Kerberos roasting and TGT attack toolkit for Active Directory | |
| NTDSWolf | Offline NTDS.dit parser and credential extractor -- NT/LM, Kerberos keys, LAPS, gMSA | |
| PassWolf | Spec-compliant AD password change, reset, and policy read over SAMR, Netlogon, LSA, Kerberos, LDAP | |
| AD-SecretGen | Derive every password-derived AD secret (NT/LM, Kerberos keys, WDigest) from a password | |
| ntcompress | Pure-Python ESE record compression and ntdll RtlCompressBuffer/RtlDecompressBuffer formats |
| Tool | Purpose | Docs |
|---|---|---|
| WPAWolf | WPA / WPA2 / WPA3-FT-PSK handshake extractor for hashcat (modes 22000 + 37100) | |
| WEPWolf | Offline, passive WEP key recovery from 802.11 captures |
| Tool | Purpose |
|---|---|
| NFSWolf | Native NFSv2/v3/v4 recon, enumeration, exploitation, and interactive shell |
| tpwalk | TP-Link GPL source and firmware URL scraper, verifier, and downloader |
- Kerberos -- protocol internals, security configuration, and attack techniques in MS Active Directory
- WiFi_Cracking -- WPA / WPA2 / WPA3 PSK security analysis reference