Dliv3 / SharpGPOLinks
A Red Team tool for remotely manipulating Group Policy Object(GPO), Organizational Unit(OU), GPLink and Security Filtering
☆115Updated 4 years ago
Alternatives and similar repositories for SharpGPO
Users that are interested in SharpGPO are comparing it to the libraries listed below
Sorting:
- C# version of Powermad☆168Updated last year
- Perform DCSync operation without mimikatz☆148Updated 11 months ago
- AV/EDR evasion via direct system calls.☆108Updated last year
- Active Directory password spraying tool. Auto fetches user list and avoids potential lockouts.☆131Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆146Updated 4 years ago
- Simple C# implementation of PowerUpSQL☆94Updated last year
- Coerce Windows machines auth via MS-EVEN☆168Updated last year
- A C# implementation of RDPThief to steal credentials from RDP.☆163Updated 5 years ago
- POC tools for exploring SMB over QUIC protocol☆128Updated 3 years ago
- DLL Hijack Search Order Enumeration BOF☆150Updated 3 years ago
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆189Updated 3 years ago
- C# version of MDSec's ParallelSyscalls☆141Updated 3 years ago
- ☆88Updated 3 years ago
- DCSync Attack from Outside using Impacket☆115Updated 3 years ago
- BOF implementation of the research by @jonasLyk and the drafted PoC from @LloydLabs☆185Updated 4 years ago
- ☆180Updated 4 years ago
- Zipper, a CobaltStrike file and folder compression utility.☆225Updated 5 years ago
- Convert Cobalt Strike profiles to IIS web.config files☆115Updated 4 years ago
- Collection of CobaltStrike beacon object files☆105Updated 3 years ago
- A Combination LSASS Dumper and LSASS Parser. All Credit goes to @slyd0g and @cube0x0.☆150Updated 3 years ago
- Pass the Hash to a named pipe for token Impersonation☆306Updated last year
- Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.☆149Updated 3 years ago
- Repository contains psexec, which will help to exploit the forgotten pipe☆170Updated 11 months ago
- Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File☆211Updated 4 years ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆86Updated 3 years ago
- Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly☆117Updated last year
- A collection of C# utilities intended to be used with Cobalt Strike's execute-assembly☆46Updated 2 years ago
- Cobalt Strike Beacon Object Files☆166Updated 3 years ago
- Dumping LSASS with a duplicated handle from custom LSA plugin☆202Updated 3 years ago
- This aggressor script uses a beacon's note field to indicate the health status of a beacon.☆142Updated 4 years ago