ST1LLY / dc-sonar
Analyzing AD domains for security risks related to user accounts
☆63Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for dc-sonar
- Updated version of PowerDNS by @domchell. Adds support for transfers over DNS A records and a few other useful features.☆82Updated last year
- Retrieve AD accounts description and search for password in it☆83Updated 2 years ago
- Red Teaming & Active Directory Cheat Sheet.☆39Updated last year
- CIS Benchmark testing of Windows SIEM configuration☆43Updated last year
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆79Updated 11 months ago
- ☆46Updated 2 years ago
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆85Updated last year
- User enumeration and password spraying tool for testing Azure AD☆68Updated 2 years ago
- Azure AD enumeration over MS Graph☆80Updated last year
- EC2StepShell is an AWS post-exploitation tool for getting high privileges reverse shells in public or private EC2 instances.☆60Updated 2 months ago
- Microsoft Exchange password spray tool with proxy support.☆40Updated 3 years ago
- ☆43Updated 4 months ago
- InfoSec Notes☆54Updated 8 months ago
- RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.☆57Updated 2 years ago
- ☆51Updated last year
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆55Updated 11 months ago
- Convert ldapdomaindump to Bloodhound☆77Updated 11 months ago
- Python tool to find vulnerable AD object and generating csv report☆26Updated 2 years ago
- C2 Automation using Linode☆78Updated 2 years ago
- ☆24Updated 3 years ago
- RDP Checker☆62Updated 9 months ago
- C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527☆29Updated 3 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 2 years ago
- Automated exploitation of MSSQL servers at scale☆82Updated this week
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆38Updated 2 years ago
- ☆51Updated 9 months ago
- Nmapurls parses Nmap xml reports from either piped input or command line arg and outputs a list of http(s) URL's to be used in an automat…☆38Updated 9 months ago
- Active DIrectory Lab for Pentesting Practice☆24Updated 2 years ago
- Duplicate not owned Token from Running Process☆72Updated last year