GoSecure / WSuspicious
WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
☆356Updated 4 years ago
Alternatives and similar repositories for WSuspicious:
Users that are interested in WSuspicious are comparing it to the libraries listed below
- Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.☆303Updated 2 years ago
- Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket☆529Updated 2 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆758Updated last year
- ☆356Updated 3 years ago
- A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.☆436Updated 3 years ago
- Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration feature…☆290Updated last year
- SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket☆840Updated 3 years ago
- OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at s…☆520Updated 2 years ago
- .NET Project for performing Authenticated Remote Execution☆393Updated 2 years ago
- ☆379Updated 3 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆231Updated 3 years ago
- Enumerate Domain Data☆326Updated last year
- Bypass for PowerShell Constrained Language Mode☆389Updated 3 years ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆478Updated 2 years ago
- A User Impersonation tool - via Token or Shellcode injection☆413Updated 2 years ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆216Updated 4 years ago
- Check for LDAP protections regarding the relay of NTLM authentication☆492Updated 5 months ago
- A tool to help query AD via the LDAP protocol☆534Updated 6 months ago
- Cobalt Strike kit for Lateral Movement☆665Updated 5 years ago
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆422Updated 2 years ago
- Fork of SafetyKatz that dynamically fetches the latest pre-compiled release of Mimikatz directly from gentilkiwi GitHub repo, runtime pat…☆860Updated 4 years ago
- ☆293Updated 9 months ago
- A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.☆628Updated 2 years ago
- Collection of remote authentication triggers in C#☆482Updated 11 months ago
- Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)☆275Updated 3 years ago
- Collection of C# projects. Useful for pentesting and redteaming.☆305Updated last year
- Dumping LAPS from Python☆267Updated 2 years ago
- Cobalt Strike kit for Persistence☆475Updated 5 years ago
- Cobalt Strike BOF that spawns a sacrificial process, injects it with shellcode, and executes payload. Built to evade EDR/UserLand hooks b…☆455Updated 2 years ago
- C# Azure Function with an HTTP trigger that generates obfuscated PowerShell snippets that break or disable AMSI for the current process.☆397Updated 7 months ago