CCob / okta-terrify
Okta Verify and Okta FastPass Abuse Tool
☆319Updated 8 months ago
Alternatives and similar repositories for okta-terrify
Users that are interested in okta-terrify are comparing it to the libraries listed below
Sorting:
- TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …☆277Updated 3 months ago
- An ADCS honeypot to catch attackers in your internal network.☆288Updated 10 months ago
- Enumerate Microsoft Entra ID (Azure AD) fast☆91Updated 3 weeks ago
- Azure DevOps Services Attack Toolkit☆290Updated 2 months ago
- Halberd : Multi-Cloud Attack Tool☆273Updated this week
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆250Updated last year
- Enumeration/exploit/analysis/download/etc pentesting framework for GCP; modeled like Pacu for AWS; a product of numerous hours via @Webbi…☆246Updated this week
- ☆96Updated 3 weeks ago
- Azure mindmap for penetration tests☆184Updated last year
- ☆182Updated 5 months ago
- WolfPack combines the capabilities of Terraform and Packer to streamline the deployment of red team redirectors on a large scale.☆148Updated last month
- A fork of the great TokenTactics with support for CAE and token endpoint v2☆290Updated 2 months ago
- A Azure Exploitation Toolkit for Red Team & Pentesters☆165Updated 2 years ago
- Slides and Codes used for the workshop Red Team Infrastructure Automation☆184Updated last year
- A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO☆173Updated 8 months ago
- Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit☆145Updated 5 months ago
- Nuke It From Orbit - remove AV/EDR with physical access☆258Updated 5 months ago
- MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.☆279Updated 9 months ago
- VeilTransfer is a data exfiltration utility designed to test and enhance the detection capabilities. This tool simulates real-world data …☆138Updated 2 months ago
- Retired TrustedSec Capabilities☆245Updated 5 months ago
- Putting a leash on naughty AWS permissions☆117Updated last month
- ☆192Updated 7 months ago
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆166Updated 7 months ago
- User Enumeration of Microsoft Teams users via API☆157Updated last year
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆206Updated 7 months ago
- PXEThief is a set of tooling that can extract passwords from the Operating System Deployment functionality in Microsoft Endpoint Configur…☆369Updated 11 months ago
- AHHHZURE is an automated deployment script that creates a vulnerable Azure cloud lab for offensive security practitioners and enthusiasts…☆104Updated last year
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆219Updated 2 months ago
- When good OAuth apps go rogue. Documents observed OAuth application tradecraft☆75Updated last month
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆372Updated last month