DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
☆11Sep 2, 2020Updated 5 years ago
Alternatives and similar repositories for DomainPasswordSpray
Users that are interested in DomainPasswordSpray are comparing it to the libraries listed below
Sorting:
- WinRemoteEnum is a module-based collection of operations achievable by a low-privileged domain user.☆13Oct 24, 2022Updated 3 years ago
- Basic code for creating the Alibaba FastJson + Spring gadget chain, as used to exploit Apache Dubbo in CVE-2019-17564 - more information …☆16Dec 10, 2022Updated 3 years ago
- ☆11Nov 17, 2025Updated 4 months ago
- An SMB library in Go☆13Oct 27, 2022Updated 3 years ago
- Automatic credential collection☆21Aug 17, 2022Updated 3 years ago
- Post-exploitation script developed using impacket☆21Mar 15, 2022Updated 4 years ago
- 代码审计关键词扫描工具☆11Apr 29, 2024Updated last year
- ☆36Mar 4, 2025Updated last year
- A lsass dump tool using MiniDumpWriteDump & syscall(NtOpenProcess) technique. only tested on windows 11 with defender enabled:-)☆17Oct 11, 2023Updated 2 years ago
- 用于windows下通过NTFS MFT快速查找文件名中带有敏感词的文件☆44Sep 29, 2025Updated 5 months ago
- BOF内存运行exe☆31Jun 19, 2023Updated 2 years ago
- WinrmCmd/WinrmShell ( Golang\PowerShell\Python)☆33Nov 16, 2020Updated 5 years ago
- A network packet synthesis language☆23Mar 5, 2026Updated 2 weeks ago
- Modified version of Pypykatz to print encrypted credentials☆56Dec 26, 2022Updated 3 years ago
- 通过OXID解析器获取Windows远程主机上网卡地址☆25Aug 8, 2022Updated 3 years ago
- Webshell plugin that works on any Atlassian product employing their plugin framework☆27Nov 20, 2017Updated 8 years ago
- ☆27May 14, 2022Updated 3 years ago
- ☆22Mar 5, 2022Updated 4 years ago
- enc8 密码碰撞脚本☆33Jan 31, 2023Updated 3 years ago
- Python tool for exploiting CVE-2021-35616☆11Dec 3, 2021Updated 4 years ago
- 获取chrome 浏览器记录☆43Sep 6, 2025Updated 6 months ago
- Aggressor script add-in for CobaltStrike to track file uploads☆48Nov 7, 2022Updated 3 years ago
- ☆14Mar 7, 2023Updated 3 years ago
- 一个IDEA插件:一键收集项目中所有jar包依赖的工具插件。遍历项目目录收集所有jar文件,复制到all-in-one文件夹,并自动添加为项目库。☆50Oct 30, 2025Updated 4 months ago
- Atlassian Jira Seraph Authentication Bypass RCE(CVE-2022-0540)☆72May 25, 2022Updated 3 years ago
- Assassin是一款精简的基于命令行的webshell管理工具,它有着多种payload发送方式和编码方式,以及精简的payload代码,使得它成为隐蔽的暗杀者,难以被很好的防御。☆123May 17, 2022Updated 3 years ago
- cmd2shellcode☆79May 6, 2021Updated 4 years ago
- Proof of Concept in Go from Secureworks' research on Azure Active Directory Brute-Force Attacks. Inspired by @treebuilder's POC on PowerS…☆14Feb 23, 2022Updated 4 years ago
- 不依赖驱动的跨平台抓包工具☆33Jan 8, 2023Updated 3 years ago
- Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.☆19Nov 6, 2024Updated last year
- lightweight CVE search☆22Dec 24, 2025Updated 2 months ago
- CVE-2021-38003 exploits extracted from https://twitter.com/WhichbufferArda/status/1609604183535284224☆38Jan 7, 2023Updated 3 years ago
- TLD records archive. Revisiting the original TLDR project by mandatoryprogrammer, on the hunt for more root nameserver changes.☆11Dec 4, 2022Updated 3 years ago
- ☆11Feb 16, 2024Updated 2 years ago
- 域内普通域用户权限查找域内所有计算机上登录的用户☆151Apr 20, 2023Updated 2 years ago
- Mssql利用工具☆277Aug 7, 2023Updated 2 years ago
- Source Code Management Attack Toolkit☆13Aug 1, 2022Updated 3 years ago
- a component of red teaming for generate route map.☆11Aug 30, 2024Updated last year
- Fake Ap with Airssl script☆13Mar 15, 2015Updated 11 years ago