Hagrid29 / AbuseAzureAPIPermissions
Abuse Azure API permissions for red teaming
☆58Updated last year
Related projects ⓘ
Alternatives and complementary repositories for AbuseAzureAPIPermissions
- Lateral Movement☆119Updated last year
- Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later☆89Updated last year
- Microsoft Graph API post-exploitation toolkit☆92Updated 4 months ago
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆133Updated 3 months ago
- A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …☆59Updated 2 months ago
- A small script that automates Entra ID persistence with Windows Hello For Business key☆47Updated 4 months ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆79Updated 4 months ago
- ☆66Updated 3 months ago
- Get Fine Grained Password Policy☆65Updated 6 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆78Updated 7 months ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆78Updated 2 months ago
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆119Updated 3 years ago
- ☆36Updated last month
- Leveraging AWS Lambda Function URLs for C2 Redirection☆24Updated last year
- ☆83Updated 2 years ago
- ☆43Updated 4 months ago
- Bypass AMSI By Dividing files into multiple smaller files☆45Updated last year
- Some scripts to support with importing large datasets into BloodHound☆78Updated 11 months ago
- A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.☆74Updated 5 months ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆66Updated last year
- A Python POC for CRED1 over SOCKS5☆134Updated last month
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆85Updated last year
- Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀☆104Updated last month
- Living off the land searches for explorer and sharepoint☆53Updated 3 weeks ago
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆106Updated 6 months ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 2 years ago
- ☆112Updated last year
- Determine if the WebClient Service (WebDAV) is running on a remote system☆123Updated 8 months ago
- Example code samples from our ScriptBlock Smuggling Blog post☆83Updated 5 months ago