ProcessusT / HEKATOMB
Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.
☆508Updated 7 months ago
Alternatives and similar repositories for HEKATOMB:
Users that are interested in HEKATOMB are comparing it to the libraries listed below
- Powershell commands for enumeration in Windows Active Directory environment.☆38Updated 2 years ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆405Updated last week
- Dominate Active Directory with PowerShell. Inspired by CrackMapExec / NetExec.☆950Updated 2 weeks ago
- Docker images of the Exegol project☆101Updated this week
- A python tool to automate KeePass discovery and secret extraction.☆477Updated 3 months ago
- Assess the security of your Active Directory with few or all privileges.☆305Updated last week
- PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains…☆765Updated last month
- A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compil…☆974Updated 8 months ago
- Dumping DPAPI credz remotely☆1,098Updated last month
- Simple & Powerful PowerShell Script Obfuscator☆555Updated last year
- Active Directory Auditing and Enumeration☆436Updated this week
- smbclient-ng, a fast and user friendly way to interact with SMB shares.☆887Updated this week
- Send phishing messages and attachments to Microsoft Teams users☆1,068Updated 9 months ago
- PowerShell Ransomware Simulator with C2 Server☆476Updated last year
- ☆89Updated this week
- A collection of Windows print spooler exploits containerized with other utilities for practical exploitation.☆554Updated 3 years ago
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆532Updated 4 months ago
- Technical notes, AD pentest methodology, list of tools, scripts and Windows commands that I find useful during internal penetration tests…☆263Updated 2 months ago
- SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…☆733Updated 2 weeks ago
- Pentest Report Generator☆397Updated this week
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆690Updated 10 months ago
- A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.☆1,921Updated this week
- Identify the accounts most vulnerable to dictionary attacks☆118Updated 7 months ago
- A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.☆367Updated last month
- VULNSPY regularly retrieves the latest alerts published by the CERT-FR and the related vulnerabilities with their CVSS score and allows y…☆38Updated 2 years ago
- Powershell tool to automate Active Directory enumeration.☆1,076Updated last month
- AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover se…☆1,262Updated last week
- Outils ESD academy☆56Updated 2 years ago
- In-depth ldap enumeration utility☆459Updated 3 weeks ago
- This project is aimed at freely providing technical guides on various hacking topics.☆813Updated 3 weeks ago