From 5e48586cb639571a1f096f8896322e3bdb239084 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Tue, 19 Oct 2021 11:18:52 +0700
Subject: [PATCH] Add: LuemmelSec/SAML2Spray to Credential Access section

---
 Offensive.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Offensive.md b/Offensive.md
index 3e243b0..ad59210 100644
--- a/Offensive.md
+++ b/Offensive.md
@@ -1713,6 +1713,10 @@ Some tools can be categorized in more than one category. But because the current
         <td><a href="https://github.com/KoreLogicSecurity/wmkick">KoreLogicSecurity/wmkick</a></td>
         <td>WMkick is a TCP protocol redirector/MITM tool that targets NTLM authentication message flows in WMI (135/tcp) and Powershell-Remoting/WSMan/WinRM (5985/tcp) to capture NetNTLMv2 hashes.</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/LuemmelSec/SAML2Spray">LuemmelSec/SAML2Spray</a></td>
+        <td>Python Script for SAML2 Authentication Passwordspray</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/m0rv4i/SafetyDump">m0rv4i/SafetyDump</a></td>
         <td>Dump stuff without touching disk</td>