4ndr34z / ntlmthief
☆51Updated last year
Alternatives and similar repositories for ntlmthief:
Users that are interested in ntlmthief are comparing it to the libraries listed below
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆55Updated last year
- PowerShell Reverse Shell☆61Updated last year
- ☆26Updated last year
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆74Updated 4 months ago
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆40Updated 9 months ago
- Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges☆22Updated 4 months ago
- Dump Kerberos tickets from the KCM database of SSSD☆50Updated 6 months ago
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆32Updated 4 months ago
- Discord C2 Profile for Mythic☆28Updated last month
- ☆43Updated 8 months ago
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆23Updated 2 months ago
- Duplicate not owned Token from Running Process☆72Updated last year
- vulnlab.com reaper writeup☆26Updated last year
- Source code and examples for PassiveAggression☆55Updated 9 months ago
- Enumerate domain machine accounts and perform pre2k password spraying.☆68Updated last year
- Bypass AMSI By Dividing files into multiple smaller files☆45Updated 2 years ago
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆87Updated last year
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆37Updated 3 months ago
- ☆34Updated last year
- Situational Awareness script to identify how and where to run implants☆48Updated 3 months ago
- ☆40Updated last year
- Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe☆13Updated last year
- A small red team course☆36Updated last year
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- 🌩️ Collection of BloodHound queries for Azure☆60Updated 2 months ago
- ☆47Updated 2 years ago
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆55Updated 3 months ago
- ☆26Updated last year
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆35Updated last year
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated 9 months ago