BC-SECURITY / DeathStarPlugin
Deathstar is an Empire plugin that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common offensive tactics, techniques, and procedures (TTPs).
☆16Updated 10 months ago
Related projects ⓘ
Alternatives and complementary repositories for DeathStarPlugin
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated 5 months ago
- Create PDFs with HTML smuggling attachments that save on opening the document.☆27Updated last year
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- Items related to the RedELK workshop given at security conferences☆27Updated last year
- ☆25Updated last year
- ☆51Updated last year
- ☆43Updated 4 months ago
- A PoC weaponising CustomXMLPart for hiding malware code inside of Office document structures.☆37Updated 2 years ago
- Modified version of Impacket to use dynamic NTLMv2 Challenge/Response☆18Updated last year
- Python tool to find vulnerable AD object and generating csv report☆26Updated 2 years ago
- ☆46Updated last year
- Discord C2 Profile for Mythic☆24Updated 7 months ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆53Updated 2 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆66Updated last year
- ☆37Updated 3 weeks ago
- Info related to the Outflank training: Microsoft Office Offensive Tradecraft☆51Updated 6 months ago
- ☆68Updated last year
- ☆44Updated 3 weeks ago
- Enumerate the Domain for Readable and Writable Shares☆16Updated 5 months ago
- This repository focuses on replicating the behavioral patterns observed in well-documented APT campaigns.☆10Updated last year
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆16Updated 2 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆41Updated last month
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆30Updated 2 years ago
- exfiltration/infiltration toolkit☆23Updated 11 months ago
- A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.☆40Updated last year
- Lifetime AMSI bypass.☆36Updated 4 months ago
- A solution to create obfuscated shellcode from msfvenom for PowerShell.☆23Updated 2 years ago
- ☆50Updated 7 months ago
- ☆58Updated 11 months ago
- A vSphere deployment of GOADv2 BETA Testing (v0.1)☆26Updated 10 months ago