RUB-NDS / MS-RMS-Attacks

Related projects ⓘ

Alternatives and complementary repositories for MS-RMS-Attacks

• jeperez / windows-operating-system-archaeology
  windows-operating-system-archaeology @Enigma0x3 @subTee
  ☆44Updated 7 years ago
• matthewdunwoody / PS_logging_reg
  A Windows REG file to enable all default PowerShell logging on a system with PowerShell v5 installed
  ☆16Updated 8 years ago
• sekirkity / SeeCLRly
  Fileless SQL Server CLR-based Custom Stored Procedure Command Execution
  ☆35Updated 7 years ago
• byt3bl33d3r / Invoke-AutoIt
  Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes
  ☆60Updated 7 years ago
• l0ss / Get-GPTrashfire
  B-Sides CBR 2018 talk about group policy and Grouper
  ☆39Updated 5 years ago
• CroweCybersecurity / smugglebus
  ☆31Updated 2 years ago
• aurel26 / gpocheck
  gpocheck
  ☆30Updated 3 months ago
• vletoux / TestAntivirus
  Test if an antivirus is installed via the resolution of the service virtual SID
  ☆55Updated 4 years ago
• davehardy20 / PoSHBypass
  ☆24Updated 6 years ago
• jackson5sec / ShimDB
  Shim database persistence (Fin7 TTP)
  ☆35Updated 4 years ago
• OmerYa / Babel-Shellfish
  Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.
  ☆41Updated 6 years ago
• ubeeri / Invoke-PWAudit
  A PowerShell tool which provides an easy way to check for shared passwords between Windows Active Directory accounts
  ☆33Updated 5 years ago
• OneLogicalMyth / Invoke-GPPCSE
  Obtains a list of GPOs based on known Client Side Extensions (CSE) that normally contain passwords
  ☆32Updated 5 years ago
• Fist0urs / kerberom
  Kerberom is a tool aimed to retrieve ARC4-HMAC'ed encrypted Tickets Granting Service (TGS) of accounts having a Service Principal Name (S…
  ☆34Updated 6 years ago
• 0xAnalyst / Sysmon
  Sysmon config for both Windows and Linux Devices. Windows one is a bit dated
  ☆54Updated 4 months ago
• funoverip / epowner
  McAfee ePolicy 0wner exploit code
  ☆46Updated 6 years ago
• GoSecure / gophish-cli
  Gophish Python cli to perform huge phishing campaigns
  ☆40Updated 6 years ago
• vletoux / DetectPasswordViaNTLMInFlow
  Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test …
  ☆57Updated 5 years ago
• machosec / Mystique
  PowerShell module to play with Kerberos S4U extensions
  ☆51Updated 7 years ago
• clr2of8 / Commentator
  ☆49Updated 7 years ago
• zacbrown / hiddentreasure-etw-demo
  Basic demo for Hidden Treasure talk.
  ☆49Updated 7 years ago
• Cn33liz / SmashedPotato
  ☆84Updated 8 years ago
• PivotAll / PivotAll
  Comprehensive Pivoting Framework
  ☆20Updated 8 years ago
• threatexpress / invoke-pipeshell
  SMB Named Pipe shell
  ☆63Updated this week
• JohnLaTwC / MacroJob
  Proof of concept VBA code to add to Normal.dot to put restrictions on Word
  ☆41Updated 7 years ago
• killswitch-GUI / Persistence-Survivability
  Powershell Persistence Locator
  ☆66Updated 8 years ago