ProcessusT / HEKATOMB
Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.
☆510Updated 6 months ago
Alternatives and similar repositories for HEKATOMB:
Users that are interested in HEKATOMB are comparing it to the libraries listed below
- Powershell commands for enumeration in Windows Active Directory environment.☆38Updated 2 years ago
- A PowerShell tool that takes strong inspiration from CrackMapExec / NetExec☆932Updated 2 weeks ago
- Docker images of the Exegol project☆98Updated this week
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆395Updated 3 weeks ago
- A python tool to automate KeePass discovery and secret extraction.☆464Updated 2 months ago
- PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains…☆749Updated this week
- A collection of techniques, examples and a little bit of theory for manually obfuscating PowerShell scripts to achieve AV evasion, compil…☆943Updated 7 months ago
- smbclient-ng, a fast and user friendly way to interact with SMB shares.☆845Updated last week
- Dumping DPAPI credz remotely☆1,067Updated 3 months ago
- A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage Power…☆653Updated 9 months ago
- Script for generating revshells☆461Updated 5 months ago
- A system administration or post-exploitation script to automatically extract the bitlocker recovery keys from a domain.☆361Updated 3 weeks ago
- Pentest Report Generator☆394Updated this week
- PowerShell Ransomware Simulator with C2 Server☆471Updated last year
- Speed up your pentest enumeration☆82Updated last month
- C2 infrastructure that allows Red Teamers to execute system commands on compromised hosts through Microsoft Teams.☆364Updated last month
- Automated Active Directory Enumeration☆433Updated 3 weeks ago
- ☆88Updated last week
- Simple & Powerful PowerShell Script Obfuscator☆549Updated last year
- ☆701Updated this week
- Powershell tool to automate Active Directory enumeration.☆1,056Updated last month
- Hardening Active Directory version 2☆300Updated last month
- Assess the security of your Active Directory with few or all privileges.☆261Updated 2 weeks ago
- ☆159Updated 4 months ago
- Technical notes, AD pentest methodology, list of tools, scripts and Windows commands that I find useful during internal penetration tests…☆258Updated last month
- Send phishing messages and attachments to Microsoft Teams users☆1,055Updated 8 months ago
- Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!☆1,081Updated 7 months ago
- Identify the accounts most vulnerable to dictionary attacks☆111Updated 6 months ago
- ☆38Updated 4 months ago
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆346Updated last week