3gstudent / List-RDP-Connections-History
Use powershell to list the RDP Connections History of logged-in users or all users
☆260Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for List-RDP-Connections-History
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆301Updated 2 years ago
- ntlm relay attack to Exchange Web Services☆328Updated 6 years ago
- CVE-2018-8581☆370Updated 2 years ago
- A PoC WMI backdoor presented at Black Hat 2015☆269Updated 9 years ago
- initial commit☆172Updated 6 years ago
- This project is just a dumping ground for random scripts I've developed.☆137Updated 2 months ago
- Powershell module to assist in attacking Exchange/Outlook Web Access☆180Updated 8 years ago
- ☆272Updated 2 years ago
- Collection of Aggressor Scripts for Cobalt Strike☆171Updated 6 years ago
- This is a Metasploit module which exploits CVE-2017-11882 using the POC released here : https://embedi.com/blog/skeleton-closet-ms-office…☆98Updated 6 years ago
- A collection of useful scripts for Cobalt Strike☆167Updated 2 months ago
- A proof of concept for the RDP Inception Attack☆344Updated 7 years ago
- ☆207Updated 5 years ago
- ☆286Updated 4 years ago
- A library for integrating communication channels with the Cobalt Strike External C2 server☆281Updated 6 years ago
- NTDS.dit offline dumper with non-elevated☆211Updated 6 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆373Updated 5 years ago
- ☆305Updated 5 years ago
- The great CrackMapExec tool compiled for Windows☆249Updated 8 years ago
- Netview enumerates systems using WinAPI calls☆289Updated 2 years ago
- PowerShell Empire Web Interface☆328Updated last year
- The PowerThIEf, an Internet Explorer Post Exploitation library☆130Updated 6 years ago
- Aggregation of Cobalt Strike's aggressor scripts.☆144Updated 6 years ago
- A Powershell client for dnscat2, an encrypted DNS command and control tool.☆392Updated last year
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆168Updated last year
- Detect and abuse risky SPNs☆259Updated 7 years ago
- Active Directory pentest scripts☆122Updated 9 years ago
- Aggressor scripts I've made for Cobalt Strike☆403Updated last year
- Not PowerShell☆444Updated 8 years ago
- Cobalt Strike SCT payload obfuscator☆142Updated 7 years ago