diff --git a/Offensive.md b/Offensive.md
index cabbab4..dfcb943 100644
--- a/Offensive.md
+++ b/Offensive.md
@@ -2183,6 +2183,10 @@ Some tools can be categorized in more than one category. But because the current
KoreLogicSecurity/wmkick |
WMkick is a TCP protocol redirector/MITM tool that targets NTLM authentication message flows in WMI (135/tcp) and Powershell-Remoting/WSMan/WinRM (5985/tcp) to capture NetNTLMv2 hashes. |
+
+ Luct0r/KerberOPSEC |
+ OPSEC safe Kerberoasting in C# |
+
LuemmelSec/SAML2Spray |
Python Script for SAML2 Authentication Passwordspray |