Active Directory certificate abuse
☆43Oct 9, 2022Updated 3 years ago
Alternatives and similar repositories for CertifyKit
Users that are interested in CertifyKit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Dump Teams conversations☆18Jun 9, 2021Updated 5 years ago
- TokenCert☆105Nov 15, 2024Updated last year
- custom impacket mssqlclient☆26Sep 16, 2023Updated 2 years ago
- Remote process shellcode injection with interactive output via named pipes☆48Jan 10, 2024Updated 2 years ago
- Purple Team Dropper generator using open source templates.☆17May 23, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post☆133Jan 14, 2023Updated 3 years ago
- ☆45Oct 16, 2023Updated 2 years ago
- 用Go开发的Java字节码解析器,和“javap”命令作用一致 Java class file parser plays the same role as "javap"☆18Oct 17, 2017Updated 8 years ago
- Dump lsass using only NTAPI functions by hand-crafting Minidump files (without MiniDumpWriteDump!!!)☆740May 7, 2025Updated last year
- Bypass Credential Guard by patching WDigest.dll using only NTAPI functions☆270Apr 8, 2025Updated last year
- AV/EDR killer leveraging vulnerable kernel drivers☆488Nov 28, 2023Updated 2 years ago
- The program uses the Windows API functions to traverse through directories and locate DLL files with RWX section☆112Jul 15, 2023Updated 2 years ago
- 👻inject_und3ad -- 蚁剑(AntSword)插件☆24Aug 8, 2019Updated 6 years ago
- OPSEC safe Kerberoasting in C#☆199Jun 14, 2022Updated 4 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Installing wazuh SIEM Unified XDR and SIEM protection☆34Jun 3, 2025Updated last year
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆58Feb 20, 2022Updated 4 years ago
- Tool to aid in dumping LSASS process remotely☆43Sep 23, 2025Updated 9 months ago
- ☆124Oct 9, 2023Updated 2 years ago
- all random stuff that dont warrant a seperate repo☆12Sep 2, 2022Updated 3 years ago
- BurpSuite Rpc 算法转发插件☆17Jan 4, 2023Updated 3 years ago
- A Stealthy Lsass Dumper - can abuse ProcExp152.sys driver to dump PPL Lsass, no dbghelp.lib calls.☆325Jan 31, 2023Updated 3 years ago
- Python tool to automatically perform SPN-less RBCD attacks.☆131Jan 7, 2026Updated 5 months ago
- .NET wrapper around LogonUserA to test creds☆12Jun 2, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆38Jun 5, 2023Updated 3 years ago
- early cascade injection PoC based on Outflanks blog post☆241Nov 7, 2024Updated last year
- Implant drop-in for EDR testing☆147Nov 15, 2023Updated 2 years ago
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely☆383Dec 13, 2024Updated last year
- A stealthier approach to WMI-based command execution using Impacket without touching the disk.☆85Mar 15, 2026Updated 3 months ago
- "Service-less" driver loading☆189Nov 28, 2024Updated last year
- Combining 3 techniques (Threadless Injection + DLL Stomping + Caro-Kann) together to evade MDE.☆80Dec 23, 2023Updated 2 years ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆379Sep 20, 2025Updated 9 months ago
- New exploitation tricks for hardened .NET Remoting servers☆33Aug 5, 2025Updated 10 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Performing Indirect Clean Syscalls☆616May 2, 2026Updated 2 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆218Oct 19, 2024Updated last year
- C++ tool and library for converting .bin files to shellcode in multiple output formats.☆33Aug 18, 2025Updated 10 months ago
- Process hollowing injection technique for Red Team operations☆18Sep 18, 2023Updated 2 years ago
- ☆133Jan 23, 2025Updated last year
- A basic exemple of the API-Hashing method used by Red Teamers but also by malwares developers in C++☆37Jan 10, 2024Updated 2 years ago
- Native C++ access to Active Directory over ADWS, no .NET, no WCF, no HTTP stack.☆80Mar 27, 2026Updated 3 months ago