PShlyundin / GPOHunter
A security assessment tool for analyzing Active Directory Group Policy Objects (GPOs) to identify misconfigurations and vulnerabilities
☆193Updated last month
Alternatives and similar repositories for GPOHunter:
Users that are interested in GPOHunter are comparing it to the libraries listed below
- ☆173Updated 2 months ago
- PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirector…☆308Updated 2 months ago
- Assess the security of your Active Directory with few or all privileges.☆261Updated last week
- A BloodHound collector for Microsoft Configuration Manager☆301Updated last month
- ☆190Updated this week
- ☆139Updated 2 months ago
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆163Updated 5 months ago
- Lab used for workshop and CTF☆172Updated 2 weeks ago
- Azure Post Exploitation Framework☆164Updated 3 weeks ago
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆163Updated 4 months ago
- Contains a collection of Bash scripts designed for comprehensive security audits and network mapping of Active Directory (AD) environment…☆130Updated 9 months ago
- TokenSmith generates Entra ID access & refresh tokens on offensive engagements. It is suitable for both covert adversary simulations and …☆247Updated 3 weeks ago
- Retrieve and display information about active user sessions on remote computers. No admin privileges required.☆177Updated 6 months ago
- Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.☆161Updated 4 months ago
- PowerShell script designed to help Incident Responders collect forensic evidence from local and remote Windows devices.☆98Updated 5 months ago
- Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy☆132Updated last month
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆270Updated 3 months ago
- A curated list of awesome LOLBins, GTFO projects, and similar 'Living Off the Land' security resources.☆140Updated 3 months ago
- MSSprinkler is a password spraying utility for organizations to test their Microsoft Online accounts from an external perspective. It emp…☆74Updated 2 months ago
- A collection of all my personal cheat sheets and guides as I progress through my career in offensive security.☆116Updated 3 weeks ago
- ☆293Updated 2 months ago
- Automatically run and populate a new instance of BH CE☆64Updated 4 months ago
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆194Updated 2 months ago
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆142Updated 8 months ago
- A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO☆163Updated 5 months ago
- Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit☆142Updated 2 months ago
- Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…☆113Updated last year
- KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).☆217Updated 6 months ago
- Azure mindmap for penetration tests☆175Updated last year
- Powershell tools used for Red Team / Pentesting.☆74Updated last year