LaresLLC / SlinkyCat
Slinky Cat attempts to give users an easy-to-navigate menu offering predefined Active Directory Service Interfaces (ADSI) and .NET queries which can be used to enumerate a Windows domain.
☆76Updated last year
Related projects: ⓘ
- ☆110Updated last year
- pysnaffler☆83Updated last month
- A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.☆105Updated 4 months ago
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆131Updated last month
- A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.☆31Updated 6 months ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆152Updated last year
- ☆144Updated 7 months ago
- Red Team "Drop and Run" NAC (802.1x) Bypass☆66Updated last year
- Hybrid AD utilities for ROADtools☆59Updated last month
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆164Updated last year
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆89Updated 3 months ago
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆114Updated last month
- ☆174Updated 5 months ago
- Living Off the Foreign Land setup scripts☆61Updated last month
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)☆150Updated last month
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆104Updated 4 months ago
- Abuse Azure API permissions for red teaming☆55Updated last year
- Some scripts to support with importing large datasets into BloodHound☆75Updated 9 months ago
- ☆114Updated 2 months ago
- Automatically run and populate a new instance of BH CE☆41Updated 2 weeks ago
- ☆141Updated 10 months ago
- Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…☆84Updated last year
- Retrieve and display information about active user sessions on remote computers. No admin privileges required.☆126Updated last month
- Python utility that generates "imageless" QR codes in various formats☆88Updated last month
- Two in one, patch lifetime powershell console, no more etw and amsi!☆79Updated 2 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆85Updated 2 months ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆75Updated last week
- ☆119Updated last month
- linikatz is a tool to attack AD on UNIX☆134Updated 11 months ago
- Microsoft Graph API post-exploitation toolkit☆90Updated 2 months ago