ProcessusT / HEKATOMBLinks
Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.
☆523Updated last year
Alternatives and similar repositories for HEKATOMB
Users that are interested in HEKATOMB are comparing it to the libraries listed below
Sorting:
- A python tool to automate KeePass discovery and secret extraction.☆511Updated last year
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆439Updated 3 months ago
- Powershell commands for enumeration in Windows Active Directory environment.☆46Updated 3 years ago
- Active Directory Mindmap Recipes: A Compromise à la Carte☆145Updated 4 months ago
- Dominate Active Directory with PowerShell.☆1,154Updated 2 months ago
- Docker images of the Exegol project☆123Updated this week
- Send phishing messages and attachments to Microsoft Teams users☆1,101Updated last year
- Script for generating revshells☆479Updated last year
- Active Directory Auditing and Enumeration☆514Updated last month
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆667Updated 3 months ago
- smbclient-ng, a fast and user friendly way to interact with SMB shares.☆999Updated 2 weeks ago
- PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains…☆964Updated 3 months ago
- Weaponized Browser-in-the-Middle (BitM) for Penetration Testers☆596Updated last month
- Dumping DPAPI credz remotely☆1,303Updated 10 months ago
- Lab used for workshop and CTF☆469Updated 3 weeks ago
- A python3 remake of the classic "tree" command with the additional feature of searching for user provided keywords/regex in files, highli…☆408Updated last year
- Malicious shortcut generator for collecting NTLM hashes from insecure file shares.☆347Updated last year
- Pentest Report Generator☆441Updated 3 months ago
- The Havoc Framework☆63Updated 3 years ago
- ☆838Updated 2 weeks ago
- Assess the security of your Active Directory with few or all privileges.☆337Updated 2 weeks ago
- PowerShell Ransomware Simulator with C2 Server☆498Updated 3 weeks ago
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆810Updated 10 months ago
- A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.☆387Updated last week
- Compiled tools for internal assessments☆369Updated this week
- Redeye is a tool intended to help you manage your data during a pentest operation☆473Updated last year
- Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!☆1,260Updated last week
- Quietly and anonymously bruteforce Active Directory usernames at insane speeds from Domain Controllers by (ab)using LDAP Ping requests (c…☆1,048Updated last year
- SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…☆874Updated this week
- winPEAS, but for Active Directory☆171Updated 9 months ago