MWR-CyberSec / AD-CS-Forest-ExploiterLinks
Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
☆98Updated last year
Alternatives and similar repositories for AD-CS-Forest-Exploiter
Users that are interested in AD-CS-Forest-Exploiter are comparing it to the libraries listed below
Sorting:
- List of some AD tools I frequently use☆47Updated 2 months ago
- Microsoft Telnet Client MS-TNAP Server-Side Authentication Token Exploit☆56Updated 3 months ago
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆106Updated 2 months ago
- ☆57Updated 9 months ago
- ☆87Updated last month
- Active Directory Authentication Library☆79Updated this week
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆58Updated last month
- Enumerate active EDR's on the system☆75Updated this week
- ☆43Updated last month
- ☆68Updated 7 months ago
- Proof of Concept Exploit for CVE-2024-9464☆45Updated 10 months ago
- A GUI wrapper inside of Havoc to interact with bloodhound CE☆72Updated last year
- Lateral Movement☆124Updated last year
- Convert your shellcode into an ASCII string☆109Updated last month
- Dump Windows SAM hashes☆42Updated 2 years ago
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆72Updated last year
- Abusing SSRF to deliver an authenticated command injection payload☆30Updated 5 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆174Updated 3 months ago
- Small toolkit for extracting information and dumping sensitive strings from Windows processes☆114Updated last year
- PfSense Stored XSS lead to Arbitrary Code Execution exploit☆47Updated 7 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆87Updated 5 months ago
- Hunt for C2 servers and phishing web sites using VirusTotal API , you can modify code to kill the malicious process☆70Updated last year
- ☆59Updated 10 months ago
- ☆71Updated 3 months ago
- This is a GRE PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion☆63Updated last month
- Exploit for the CVE-2024-5806☆45Updated last year
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆83Updated 11 months ago
- RCE through a race condition in Apache Tomcat☆56Updated 8 months ago
- ☆160Updated last year
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year