DrunkF0x / ADSpider
Monitor changes in Active Directory with replication metadata
☆85Updated 6 months ago
Alternatives and similar repositories for ADSpider:
Users that are interested in ADSpider are comparing it to the libraries listed below
- A security assessment tool for analyzing Active Directory Group Policy Objects (GPOs) to identify misconfigurations and vulnerabilities☆162Updated last week
- A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.☆132Updated 8 months ago
- A collection of all my personal cheat sheets and guides as I progress through my career in offensive security.☆107Updated 2 months ago
- Retrieve and display information about active user sessions on remote computers. No admin privileges required.☆170Updated 5 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆152Updated last month
- ☆104Updated 11 months ago
- Automatically run and populate a new instance of BH CE☆59Updated 3 months ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)☆174Updated 3 months ago
- ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…☆65Updated this week
- ☆197Updated 3 months ago
- ☆173Updated last month
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆182Updated last month
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆183Updated last month
- BloodHound PowerShell client☆48Updated 3 months ago
- Inject RDPThief into memory with PowerShell.☆58Updated 3 months ago
- Analyse MSI files for vulnerabilities☆121Updated 4 months ago
- Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀☆142Updated this week
- An Ansible collection that installs an SCCM deployment with optional configurations.☆68Updated 6 months ago
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆150Updated last month
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆193Updated 7 months ago
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆101Updated 7 months ago
- Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…☆104Updated last year
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆60Updated 7 months ago
- Amazing whoami alternatives☆138Updated 9 months ago
- Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy☆124Updated last week
- Two in one, patch lifetime powershell console, no more etw and amsi!☆84Updated 6 months ago
- Continuous password spraying tool☆121Updated last month
- 🌩️ Collection of BloodHound queries for Azure☆47Updated last week
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆78Updated 4 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆143Updated 8 months ago