Dviros / CredsLeaker
Credsleaker allows an attacker to craft a highly convincing credentials prompt using Windows Security, validate it against the DC and in turn leak it via an HTTP request.
☆312Updated 3 years ago
Alternatives and similar repositories for CredsLeaker:
Users that are interested in CredsLeaker are comparing it to the libraries listed below
- FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.☆251Updated last year
- Turn a normal PDF file into malicious.Use to steal Net-NTLM Hashes from windows machines.☆339Updated 3 years ago
- Rapid Attack Infrastructure (RAI)☆302Updated 3 months ago
- Windows active user credential phishing tool☆280Updated 5 years ago
- This is a weaponized WSUS exploit☆283Updated 2 years ago
- Aggressor scripts I've made for Cobalt Strike☆405Updated last year
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆303Updated 2 years ago
- Quick Malicious ClickOnceGenerator for Red Team☆249Updated 4 years ago
- A Network Enumeration and Attack Toolset for Windows Active Directory Environments.☆245Updated 9 months ago
- A framework for stealthy domain reconnaissance☆300Updated 3 years ago
- Generates Malicious Macro and Execute Powershell or Shellcode via MSBuild Application Whitelisting Bypass.☆506Updated 5 years ago
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆448Updated 2 years ago
- ☆177Updated 6 years ago
- Domain user enumeration tool☆215Updated last year
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆322Updated 5 years ago
- Network Pivoting Toolkit☆440Updated last year
- morphHTA - Morphing Cobalt Strike's evil.HTA☆519Updated last year
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆376Updated 5 years ago
- A tool to be used in post exploitation phase for blue and red teams to bypass APPLICATIONCONTROL policies☆312Updated last year
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆322Updated 5 years ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆216Updated 4 years ago
- ☆272Updated 2 years ago
- This script will generate payloads for basic intrusion detection avoidance. It utilizes publicly demonstrated techniques from several dif…☆441Updated last year
- Various Cheat Sheets☆181Updated 3 years ago
- ☆307Updated 6 years ago
- Disposable and resilient red team infrastructure with Terraform☆263Updated 6 years ago
- For all your network pentesting needs☆152Updated 8 months ago
- RedPeanut is a small RAT developed in .Net Core 2 and its agent in .Net 3.5 / 4.0.☆328Updated last year
- Powershell script for enumerating vulnerable DCOM Applications☆256Updated 6 years ago
- ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.☆227Updated 7 years ago