RedTeamPentesting / adauthLinks
Active Directory Authentication Library
☆79Updated 2 weeks ago
Alternatives and similar repositories for adauth
Users that are interested in adauth are comparing it to the libraries listed below
Sorting:
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆150Updated 8 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆207Updated last year
- ☆83Updated 5 months ago
- Lateral Movement☆124Updated last year
- Advanced In-Memory PowerShell Process Injection Framework☆70Updated 3 months ago
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…☆86Updated last month
- Abuse leaked token handles.☆132Updated last year
- Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options☆142Updated 6 months ago
- ☆192Updated 6 months ago
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆126Updated last year
- Dump processes over WMI with MSFT_MTProcess☆75Updated last month
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆147Updated last week
- Local SYSTEM auth trigger for relaying☆165Updated 3 months ago
- Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning☆134Updated 5 months ago
- ☆148Updated 5 months ago
- ☆83Updated last year
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆82Updated last year
- Tool for viewing NTDS.dit☆183Updated 7 months ago
- Tool for MSSQL relay audit and abuse☆55Updated 10 months ago
- Execute commands in other Sessions☆89Updated last year
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆148Updated last year
- The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…☆158Updated last month
- To audit the security of read-only domain controllers☆117Updated last year
- ☆160Updated last year
- A C# port from Invoke-GhostTask☆118Updated last year
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆116Updated 4 months ago
- A tool for coercing and relaying Kerberos authentication over DCOM and RPC.☆138Updated 3 months ago
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise☆101Updated last year
- Collect infrastructure and permissions data from vCenter and export it as a BloodHound‑compatible graph using Custom Nodes/Edges☆154Updated 2 months ago
- A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …☆208Updated 3 months ago