A dumping ground for little helpers
Here's a few highlights that I use frequently:
Versatile mail spoofing script for phishing campaigns.
Test internal / open mail relays in infrastructure tests.
Info-leak and dictionary attack tool for NTLM authed web resources.
Take a large password dictionary and apply filters to match your target password policy.
Password spray against various basic auth URLs
Finding a python interpreter on an endpoint is increasingly common and great for bypassing allow-listing. This provides a reasonably powerful CLI to do filesystem stuff, port scanning and process injection. Very useful!