CCob / gssapi-abuseLinks
A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
☆169Updated last week
Alternatives and similar repositories for gssapi-abuse
Users that are interested in gssapi-abuse are comparing it to the libraries listed below
Sorting:
- ☆119Updated 4 months ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆176Updated 2 years ago
- ☆68Updated 6 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆139Updated 4 months ago
- A Python POC for CRED1 over SOCKS5☆154Updated 10 months ago
- ☆184Updated 9 months ago
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆140Updated last year
- Automated exploitation of MSSQL servers at scale☆113Updated this week
- PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph☆208Updated last week
- Cortex XDR Config Extractor☆133Updated 2 years ago
- ☆160Updated last year
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆116Updated last year
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…☆78Updated this week
- ☆212Updated last year
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆177Updated 2 years ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆83Updated 11 months ago
- pysnaffler☆102Updated last month
- Lateral Movement☆124Updated last year
- Determine if the WebClient Service (WebDAV) is running on a remote system☆139Updated last year
- ☆191Updated 4 months ago
- A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure…☆42Updated last month
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆41Updated last year
- Tool to extract username and password of current user from PanGPA in plaintext☆87Updated 8 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆160Updated last month
- ☆91Updated 7 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆174Updated 3 months ago
- Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"☆145Updated last year
- SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆124Updated 3 weeks ago
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆94Updated 2 years ago
- ☆145Updated 3 months ago