RDP hijacking — how to hijack RDS and RemoteApp sessions transparently to move through an organisation(2017)
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
tools The Infection Monkey is an open source security tool for testing a data center's resiliency to perimeter breaches and internal server infection.
tools SAP-Dissection-plug-in-for-Wireshark:This Wireshark plugin provides dissection on SAP's NI, Message Server, Router, Diag and Enqueue protocols.
tools firepwd.py, an open source tool to decrypt Mozilla protected passwords https://github.com/lclevy/firepwd