Mr-Un1k0d3r / ATP-PowerShell-Scripts
Microsoft Signed PowerShell scripts
☆214Updated 2 years ago
Alternatives and similar repositories for ATP-PowerShell-Scripts:
Users that are interested in ATP-PowerShell-Scripts are comparing it to the libraries listed below
- A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…☆457Updated 2 years ago
- DNS Tunneling using powershell to download and execute a payload. Works in CLM.☆218Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆322Updated last year
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 2 years ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆386Updated last year
- ☆406Updated last year
- Some scripts to abuse kerberos using Powershell☆328Updated last year
- ☆164Updated 2 years ago
- Quietly enumerate an Active Directory Domain via LDAP parsing users, admins, groups, etc.☆487Updated 2 years ago
- Finding all things on-prem Microsoft for password spraying and enumeration.☆254Updated 2 years ago
- FindUncommonShares is a Python script allowing to quickly find uncommon shares in vast Windows Domains, and filter by READ or WRITE acces…☆411Updated last month
- Run Powershell without software restrictions.☆285Updated 3 years ago
- ☆376Updated 6 months ago
- PXEThief is a set of tooling that can extract passwords from the Operating System Deployment functionality in Microsoft Endpoint Configur…☆356Updated 10 months ago
- A User Impersonation tool - via Token or Shellcode injection☆412Updated 2 years ago
- ☆375Updated 2 years ago
- Recovering NTLM hashes from Credential Guard☆334Updated 2 years ago
- ☆446Updated 2 years ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆380Updated last week
- Stop Defender Service using C# via Token Impersonation☆170Updated 3 years ago
- ☆297Updated 5 months ago
- Identify the attack paths in BloodHound breaking your AD tiering☆317Updated 2 years ago
- ☆246Updated last year
- A C# utility for interacting with SCCM☆618Updated 6 months ago
- OPSEC safe Kerberoasting in C#☆190Updated 2 years ago
- Ask a TGS on behalf of another user without password☆468Updated 8 months ago
- A tool to find folders excluded from AV real-time scanning using a time oracle☆233Updated last year
- ☆207Updated 3 years ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆290Updated 4 months ago
- Dump NTDS with golden certificates and UnPAC the hash☆633Updated last year