Dramelac / GoldenCopy
Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
☆75Updated 4 months ago
Related projects: ⓘ
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆118Updated 2 years ago
- ☆83Updated 2 years ago
- Find .net assemblies locally☆85Updated last year
- A module for CME that spiders across a domain.☆35Updated 2 years ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆46Updated 3 months ago
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆81Updated last year
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆129Updated this week
- ☆69Updated 10 months ago
- Some scripts to support with importing large datasets into BloodHound☆75Updated 9 months ago
- ☆32Updated this week
- Slide decks and/or materials from conference presentations☆55Updated last year
- Unchain AMSI by patching the provider’s unmonitored memory space☆87Updated last year
- Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later☆88Updated last year
- ☆144Updated 7 months ago
- Get Fine Grained Password Policy☆62Updated 4 months ago
- ☆102Updated last month
- ☆34Updated 3 years ago
- ☆51Updated 3 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆41Updated last year
- Living Off the Foreign Land setup scripts☆61Updated last month
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 2 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆117Updated 6 months ago
- Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.☆116Updated 2 years ago
- Disconnected GPO Editor - A Group Policy Manager launcher to allow editing of domain GPOs from non-domain joined machines☆55Updated 2 weeks ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 2 years ago
- Red Team "Drop and Run" NAC (802.1x) Bypass☆66Updated last year
- This repo hosts a poc of how to execute F# code within an unmanaged process☆64Updated 2 months ago
- ☆81Updated 3 years ago
- Weaponising C# - Fundamentals Training Content☆71Updated 3 years ago