GoSecure / WSuspiciousLinks
WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
☆365Updated 4 years ago
Alternatives and similar repositories for WSuspicious
Users that are interested in WSuspicious are comparing it to the libraries listed below
Sorting:
- ☆361Updated 4 years ago
- Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration feature…☆292Updated 2 years ago
- Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket☆547Updated 2 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆777Updated last year
- Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.☆307Updated 2 years ago
- .NET Project for performing Authenticated Remote Execution☆398Updated 2 years ago
- SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket☆870Updated 3 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆233Updated 3 years ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆478Updated 3 years ago
- ☆391Updated 4 years ago
- A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.☆440Updated 3 years ago
- Bypass for PowerShell Constrained Language Mode☆393Updated 3 years ago
- Collection of remote authentication triggers in C#☆492Updated last year
- A tool to help query AD via the LDAP protocol☆556Updated 8 months ago
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆425Updated 2 years ago
- A User Impersonation tool - via Token or Shellcode injection☆416Updated 3 years ago
- Cobalt Strike kit for Lateral Movement☆669Updated 5 years ago
- ☆354Updated last year
- Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…☆865Updated 4 years ago
- OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at s…☆527Updated 2 years ago
- Check for LDAP protections regarding the relay of NTLM authentication☆494Updated 7 months ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆217Updated 4 years ago
- NTLM relaying for Windows made easy☆567Updated 2 years ago
- Enumerate Domain Data☆327Updated last year
- ☆223Updated 2 years ago
- "Golden" certificates☆689Updated 10 months ago
- A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.☆630Updated 2 years ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆392Updated last year
- ☆395Updated 2 weeks ago
- LDAP library for auditing MS AD☆447Updated 3 weeks ago