MWR-CyberSec / AD-CS-Forest-ExploiterLinks
Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
☆96Updated last year
Alternatives and similar repositories for AD-CS-Forest-Exploiter
Users that are interested in AD-CS-Forest-Exploiter are comparing it to the libraries listed below
Sorting:
- List of some AD tools I frequently use☆47Updated 2 weeks ago
- Active Directory Authentication Library☆74Updated 2 weeks ago
- Microsoft Telnet Client MS-TNAP Server-Side Authentication Token Exploit☆54Updated last month
- Inject RDPThief into memory with PowerShell.☆64Updated 5 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆84Updated 3 months ago
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆97Updated 2 months ago
- Lateral Movement☆124Updated last year
- Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)☆71Updated last year
- ☆57Updated 7 months ago
- A GUI wrapper inside of Havoc to interact with bloodhound CE☆71Updated last year
- ☆55Updated 4 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆115Updated 2 months ago
- ☆137Updated last month
- ☆41Updated last week
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆172Updated last month
- Example code samples from our ScriptBlock Smuggling Blog post☆90Updated last year
- Scripts I use to deploy Havoc on Linode and setup categorization and SSL☆40Updated last year
- Shellcode Tester Pro is a graphical interface tool for analysis, simulated execution, and reverse engineering of malicious shellcodes.☆29Updated 2 months ago
- ☆66Updated last month
- .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS☆147Updated 4 months ago
- APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files☆90Updated 2 months ago
- ☆88Updated 5 months ago
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆34Updated 6 months ago
- ☆84Updated 4 months ago
- Duplicate not owned Token from Running Process☆72Updated last year
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆57Updated 3 weeks ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆81Updated 9 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆147Updated last year
- Personal collection of exploits and PoCs across Windows, Linux, and enterprise software.☆50Updated 2 months ago
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…☆76Updated last week