Dviros / CredsLeaker
Credsleaker allows an attacker to craft a highly convincing credentials prompt using Windows Security, validate it against the DC and in turn leak it via an HTTP request.
☆312Updated 3 years ago
Alternatives and similar repositories for CredsLeaker:
Users that are interested in CredsLeaker are comparing it to the libraries listed below
- Rapid Attack Infrastructure (RAI)☆303Updated 2 months ago
- Aggressor scripts I've made for Cobalt Strike☆403Updated last year
- FudgeC2 - a command and control framework designed for team collaboration and post-exploitation activities.☆249Updated last year
- Turn a normal PDF file into malicious.Use to steal Net-NTLM Hashes from windows machines.☆338Updated 3 years ago
- Windows active user credential phishing tool☆280Updated 4 years ago
- Quick Malicious ClickOnceGenerator for Red Team☆246Updated 4 years ago
- ☆272Updated 2 years ago
- This is a weaponized WSUS exploit☆282Updated 2 years ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆301Updated 2 years ago
- Generates Malicious Macro and Execute Powershell or Shellcode via MSBuild Application Whitelisting Bypass.☆497Updated 5 years ago
- Domain user enumeration tool☆213Updated last year
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆445Updated 2 years ago
- ☆176Updated 6 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆392Updated 4 years ago
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities☆202Updated 4 years ago
- Network Pivoting Toolkit☆438Updated last year
- Disposable and resilient red team infrastructure with Terraform☆258Updated 5 years ago
- morphHTA - Morphing Cobalt Strike's evil.HTA☆520Updated last year
- Check-LocalAdminHash is a PowerShell tool that attempts to authenticate to multiple hosts over either WMI or SMB using a password hash to…☆174Updated last year
- A library of pretexts to use on offensive phishing engagements.☆337Updated 5 years ago
- ☆306Updated 6 years ago
- PowerShell and Cobalt Strike scripts for lateral movement using Excel 4.0 / XLM macros via DCOM (direct shellcode injection in Excel.exe)☆322Updated 5 years ago
- A framework for stealthy domain reconnaissance☆298Updated 3 years ago
- Various Cheat Sheets☆180Updated 3 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆375Updated 5 years ago
- For all your network pentesting needs☆151Updated 7 months ago
- ☆515Updated 2 years ago
- This script will generate payloads for basic intrusion detection avoidance. It utilizes publicly demonstrated techniques from several dif…☆440Updated last year
- DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim's machine, a controler, running on any m…☆294Updated 7 years ago
- Phishing Template Generation Made Easy☆164Updated 7 years ago