Octoberfest7 / OSEP-Tools
β241Updated 2 years ago
Alternatives and similar repositories for OSEP-Tools:
Users that are interested in OSEP-Tools are comparing it to the libraries listed below
- π Orange Tsai EventViewer RCE��β184Updated 2 years ago
- A collection of code snippets built to assist with breaking chains.β117Updated 10 months ago
- PowerShell Constrained Language Mode Bypassβ259Updated 4 years ago
- Lists who can read any gMSA password blobs and parses them if the current user has access.β265Updated last year
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.β310Updated 2 years ago
- Python tool to Check running WebClient services on multiple targets based on @leechristensenβ270Updated 3 years ago
- Creating a repository with all public Beacon Object Files (BoFs)β464Updated last year
- Materials for the workshop "Red Team Ops: Havoc 101"β367Updated 5 months ago
- Kerberoast with ACL abuse capabilitiesβ420Updated 3 months ago
- Partial python implementation of SharpGPOAbuseβ404Updated last year
- Collection of remote authentication triggers in C#β477Updated 10 months ago
- From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controllerβ417Updated 2 months ago
- Collection of some of my own tools with other great open source tools out there packaged into a powershell moduleβ144Updated 2 years ago
- AD ACL abuseβ286Updated last week
- A marriage between Octoberfest7/OSEP-Tools and chvancooten/OSEP-Code-Snippets with some improvements/additionsβ53Updated 2 months ago
- Ad hoc collection of Red Teaming & Active Directory tooling.β190Updated last year
- Custom Queries - Brought Up to BH4.1 syntaxβ245Updated 4 months ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR β¦β257Updated 2 years ago
- Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannelβ608Updated 8 months ago
- Attempt at Obfuscated version of SharpCollectionβ205Updated last month
- Useful C2 techniques and cheatsheets learned from engagementsβ474Updated last week
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Typesβ378Updated 2 years ago
- Timeroasting scripts by Tom Tervoortβ275Updated last year
- PEN-300 collection to help you on your exam.β394Updated last year
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinelβ320Updated last year
- A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) witβ¦β514Updated last month
- Collection of useful pre-compiled .NET binaries or other executables for penetration testing Windows Active Directory environmentsβ123Updated 2 weeks ago
- generate payloads that force authentication against an attacker machineβ104Updated 2 years ago
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the β¦β537Updated last year
- Ask a TGS on behalf of another user without passwordβ467Updated 7 months ago