Azure AD cheatsheet for the CARTP course
☆152May 5, 2022Updated 3 years ago
Alternatives and similar repositories for CARTP-cheatsheet
Users that are interested in CARTP-cheatsheet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Extra cmdlets to help with quering security related information from Azure☆15Sep 16, 2024Updated last year
- ☆42Jan 12, 2022Updated 4 years ago
- ☆28Apr 1, 2022Updated 4 years ago
- Azure Security Resources and Notes☆1,738Feb 17, 2026Updated 2 months ago
- Various resources to enhance Cobalt Strike's functionality and its ability to evade antivirus/EDR detection☆328May 17, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆364Dec 13, 2025Updated 4 months ago
- A fork of the great TokenTactics with support for CAE and token endpoint v2☆416Apr 12, 2026Updated 2 weeks ago
- Azure AD RedTeam Full Enumeration Script used to query all aspects of your target Azure tenant.☆72Jul 10, 2024Updated last year
- Cheatsheet for the commands learned in Attack and Defense Active Directory Lab☆247Dec 4, 2022Updated 3 years ago
- Leveraging AWS Lambda Function URLs for C2 Redirection☆47Aug 30, 2023Updated 2 years ago
- A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the ac…☆1,087Mar 19, 2024Updated 2 years ago
- AzureAD Pentest☆25Mar 24, 2022Updated 4 years ago
- A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.☆801Apr 2, 2026Updated 3 weeks ago
- Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege☆227Nov 23, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A collection of resources, tools and more for penetration testing and securing Microsofts cloud platform Azure.☆1,193Dec 27, 2023Updated 2 years ago
- Pentesting cheatsheet with all the commands I learned during my learning journey. Will try to to keep it up-to-date.☆1,517Nov 21, 2025Updated 5 months ago
- TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts☆1,382Mar 9, 2026Updated last month
- OPSEC safe Kerberoasting in C#☆198Jun 14, 2022Updated 3 years ago
- A collection of Azure AD/Entra tools for offensive and defensive security purposes☆2,597Feb 5, 2026Updated 2 months ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆34Nov 13, 2023Updated 2 years ago
- ☆31Jul 26, 2024Updated last year
- Offensive security and Penetration Testing TTP for Cloud based environment (AWS / Azure / GCP)☆349Mar 4, 2025Updated last year
- Your NTDLL vaccine from modern direct syscall methods.☆36Apr 5, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Locate dlls and function addresses without PEB Walk and EAT parsing☆105Nov 7, 2025Updated 5 months ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆850Dec 2, 2023Updated 2 years ago
- A repository with my code snippets for research/education purposes.☆53Jul 28, 2023Updated 2 years ago
- Attempt at Obfuscated version of SharpCollection☆258Nov 15, 2025Updated 5 months ago
- A collection of scripts for assessing Microsoft Azure security☆2,372Mar 15, 2026Updated last month
- A C#-implemented malware that dynamically modifies its own hash upon each execution to evade detection.☆17Feb 3, 2025Updated last year
- Custom Queries - Brought Up to BH4.1 syntax☆277Dec 7, 2025Updated 4 months ago
- Exactly what it sounds like, which is something rad☆22Oct 12, 2022Updated 3 years ago
- A basic Terraform configuration for provisioning simple red team infrastructure in DigitalOcean☆12May 5, 2021Updated 4 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).☆592Mar 19, 2024Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆396Feb 23, 2024Updated 2 years ago
- ☆39Aug 8, 2021Updated 4 years ago
- PowerShell framework to assess Azure security☆1,269Oct 18, 2025Updated 6 months ago
- A centralized resource for previously documented WDAC bypass techniques☆617Sep 8, 2025Updated 7 months ago
- TokenCert☆102Nov 15, 2024Updated last year
- Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+☆36Dec 1, 2025Updated 5 months ago