FlyingPhish / ROADTools-Analyser
This python script performs a number of sqlite queries (mainly password metadata) against sqlite databases (Created by ROADtools) to provide analysis of account password hygene based on metadata.
☆22Updated 8 months ago
Alternatives and similar repositories for ROADTools-Analyser:
Users that are interested in ROADTools-Analyser are comparing it to the libraries listed below
- 🌩️ Collection of BloodHound queries for Azure☆60Updated 2 months ago
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆88Updated last year
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆55Updated last year
- ☆52Updated last year
- ☆43Updated 8 months ago
- Living off the land searches for explorer and sharepoint☆59Updated 5 months ago
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆24Updated 2 months ago
- Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)☆31Updated last year
- ☆47Updated this week
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆32Updated 4 months ago
- Source code and examples for PassiveAggression☆55Updated 9 months ago
- A PowerShell script designed to detect misconfigured Azure Storage Accounts that could potentially be exploited for privilege escalation …☆12Updated 11 months ago
- Dump Kerberos tickets from the KCM database of SSSD☆50Updated 6 months ago
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆74Updated 4 months ago
- A cross-platform tool to parse and describe the contents of a raw ntSecurityDescriptor structure.☆38Updated last month
- ☆49Updated 5 months ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆55Updated 3 months ago
- ☆25Updated this week
- Tool to extract username and password of current user from PanGPA in plaintext☆83Updated 3 months ago
- IP address filter by City☆11Updated 2 months ago
- Table of AD and Azure assets and whether they belong to Tier Zero☆26Updated last year
- Abuse Azure API permissions for red teaming☆63Updated 2 years ago
- SACL Scanner is a tool designed to scan and analyze SACLs.☆37Updated last month
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆30Updated 3 weeks ago
- BloodHound PowerShell client☆51Updated 2 weeks ago
- ☆26Updated last year
- Microsoft Graph API post-exploitation toolkit☆94Updated 8 months ago
- ☆34Updated last year
- Scripts to interact with Microsoft Graph APIs☆36Updated 4 months ago