Raikia / CredNinja
A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale via SMB, plus now with a user hunter
☆446Updated 2 years ago
Alternatives and similar repositories for CredNinja:
Users that are interested in CredNinja are comparing it to the libraries listed below
- Remote Recon and Collection☆448Updated 7 years ago
- LyncSniper: A tool for penetration testing Skype for Business and Lync deployments☆305Updated 4 years ago
- Search for categorized domain☆443Updated 6 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆393Updated 4 years ago
- Tater is a PowerShell implementation of the Hot Potato Windows Privilege Escalation exploit from @breenmachine and @foxglovesec☆452Updated 8 years ago
- This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.☆381Updated 7 months ago
- locate and attack Lync/Skype for Business☆335Updated 4 months ago
- This script will generate payloads for basic intrusion detection avoidance. It utilizes publicly demonstrated techniques from several dif…☆441Updated last year
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆631Updated 7 years ago
- morphHTA - Morphing Cobalt Strike's evil.HTA☆520Updated last year
- Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.☆365Updated 6 months ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆321Updated 7 years ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆302Updated 2 years ago
- Fileless web browser information extraction☆218Updated 6 years ago
- ☆272Updated 2 years ago
- A script to test an RDP host for sticky keys and utilman backdoor.☆258Updated 8 years ago
- A Powershell client for dnscat2, an encrypted DNS command and control tool.☆401Updated last year
- Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account ha…☆502Updated 4 years ago
- DBC2 (DropboxC2) is a modular post-exploitation tool, composed of an agent running on the victim's machine, a controler, running on any m…☆294Updated 7 years ago
- ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.☆228Updated 7 years ago
- Feed the tool a .nessus file and it will automatically get you MSF shell☆235Updated 2 years ago
- Aggressor scripts I've made for Cobalt Strike☆403Updated last year
- Domain user enumeration tool☆215Updated last year
- PowerShell Empire Web Interface☆328Updated last year
- Windows Pentest Scripts☆230Updated 7 years ago
- ☆282Updated 7 years ago
- Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.☆637Updated last year
- PowerShell Scripts focused on Post-Exploitation Capabilities☆316Updated 7 years ago
- This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance…☆437Updated 7 years ago
- SprayWMI is an easy way to get mass shells on systems that support WMI. Much more effective than PSEXEC as it does not leave remnants on …☆253Updated 9 years ago