Octoberfest7 / OSEP-Tools
β240Updated 2 years ago
Alternatives and similar repositories for OSEP-Tools:
Users that are interested in OSEP-Tools are comparing it to the libraries listed below
- PowerShell Constrained Language Mode Bypassβ258Updated 4 years ago
- A collection of code snippets built to assist with breaking chains.β117Updated 10 months ago
- π Orange Tsai EventViewer RCEβ184Updated 2 years ago
- Lists who can read any gMSA password blobs and parses them if the current user has access.β264Updated last year
- A marriage between Octoberfest7/OSEP-Tools and chvancooten/OSEP-Code-Snippets with some improvements/additionsβ53Updated 2 months ago
- Materials for the workshop "Red Team Ops: Havoc 101"β366Updated 5 months ago
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.β310Updated 2 years ago
- Python tool to Check running WebClient services on multiple targets based on @leechristensenβ268Updated 3 years ago
- Custom Queries - Brought Up to BH4.1 syntaxβ244Updated 4 months ago
- Partial python implementation of SharpGPOAbuseβ403Updated last year
- PEN-300 collection to help you on your exam.β370Updated last year
- Collection of some of my own tools with other great open source tools out there packaged into a powershell moduleβ143Updated 2 years ago
- Kerberoast with ACL abuse capabilitiesβ420Updated 2 months ago
- Fork of BloodHound with PKI nodes and edges for Certipy along with some minor personal improvementsβ147Updated 2 years ago
- Collection of remote authentication triggers in C#β475Updated 9 months ago
- Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannelβ604Updated 8 months ago
- From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controllerβ417Updated 2 months ago
- Ad hoc collection of Red Teaming & Active Directory tooling.β188Updated last year
- AD ACL abuseβ285Updated this week
- A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other obβ¦β457Updated 2 years ago
- Inject remote template link into word document for remote template injectionβ166Updated 4 years ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Typesβ378Updated 2 years ago
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the β¦β536Updated last year
- Attempt at Obfuscated version of SharpCollectionβ205Updated last month
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinelβ320Updated last year
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memoryβ384Updated 11 months ago
- β312Updated last week
- Creating a repository with all public Beacon Object Files (BoFs)β460Updated last year
- A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) witβ¦β513Updated last month
- Ask a TGS on behalf of another user without passwordβ467Updated 7 months ago