3lp4tr0n / RemoteMonologueLinks
Weaponizing DCOM for NTLM Authentication Coercions
☆182Updated 2 months ago
Alternatives and similar repositories for RemoteMonologue
Users that are interested in RemoteMonologue are comparing it to the libraries listed below
Sorting:
- Local SYSTEM auth trigger for relaying☆168Updated 5 months ago
- ☆198Updated 9 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆214Updated last year
- ☆215Updated last year
- Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.☆182Updated 2 weeks ago
- An x64 position-independent shellcode stager that verifies the stage it retrieves prior to execution☆194Updated last year
- Adversary Emulation Framework☆128Updated 6 months ago
- ☆233Updated last year
- The DCERPC only printerbug.py version☆186Updated 2 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆154Updated 2 months ago
- Just another C2 Redirector using CloudFlare. Support multiple C2 and multiple domains. Support for websocket listener.☆182Updated 9 months ago
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆119Updated last year
- ☆155Updated 8 months ago
- ☆186Updated 6 months ago
- Python and BOF utilites to the determine EPA enforcement levels of popular NTLM relay targets from the offensive perspective☆162Updated last month
- A Python POC for CRED1 over SOCKS5☆162Updated last year
- Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.☆181Updated 3 weeks ago
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆341Updated last year
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆211Updated last year
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆187Updated 8 months ago
- ForsHops☆152Updated 9 months ago
- The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…☆167Updated 4 months ago
- ☆94Updated last month
- My implementation of the GIUDA project in C++☆188Updated 2 years ago
- A tool for coercing and relaying Kerberos authentication over DCOM and RPC.☆146Updated 5 months ago
- Tool for viewing NTDS.dit☆190Updated 9 months ago
- SOCKS5 proxy tool that uses Azure Blob Storage as a means of communication.☆258Updated 8 months ago
- Build sneaky & malicious LNK files.☆155Updated 5 months ago
- Stage 0☆168Updated last year
- OAuth Device Code Phishing Toolkit☆105Updated 4 months ago