Sh11td0wn / winrm_kerb_shellLinks
Ruby script that calls an almost interactive shell via WinRM (TCP/5985) on an Windows machine, relaying on a valid Kerberos ticket. (Very useful with Golden Tickets)
☆18Updated 5 years ago
Alternatives and similar repositories for winrm_kerb_shell
Users that are interested in winrm_kerb_shell are comparing it to the libraries listed below
Sorting:
- Add SD for controlled computer object to a target object for RBCD using LDAP☆38Updated 3 years ago
- Library of sites for categorization☆26Updated 6 years ago
- Python3 tool to perform password spraying against Microsoft Online service using various methods☆87Updated 2 years ago
- Modified version of PEAS client for offensive operations☆41Updated 2 years ago
- ☆21Updated 3 years ago
- ☆71Updated last week
- terraform deployment for red team☆23Updated 2 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆91Updated 3 years ago
- Federated Office365 user enumeration based on correlated response trend analysis☆51Updated 3 years ago
- Password Spraying Script detecting current and previous passwords of Active Directory User☆65Updated 3 years ago
- ☆37Updated 4 years ago
- Scripts for public use that we've randomly written, or have updated from other people's work.☆40Updated last year
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆25Updated 3 months ago
- Python3 Ebowla... 3Bowla☆17Updated 5 years ago
- Convert ldapdomaindump to Bloodhound☆80Updated last year
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆56Updated 3 years ago
- Convert an LDIF file to JSON files ingestible by BloodHound☆42Updated 2 months ago
- ☆17Updated 7 months ago
- Bypass Constrained Language Mode in PowerShell☆29Updated 6 years ago
- ☆32Updated 5 years ago
- C# .Net Framework program that uses RunspaceFactory for Powershell command execution.☆18Updated 2 years ago
- Exchangelib wrapper for pentesting☆64Updated 4 months ago
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆38Updated last year
- A BOF tool that can be used to collect passwords using CredUIPromptForWindowsCredentialsName.☆15Updated 3 years ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆67Updated last year
- ☆12Updated 2 years ago
- Tradecraft Development Fundamentals☆40Updated 3 years ago
- .NET wrapper around LogonUserA to test creds☆12Updated 3 years ago
- Custom queries list for BloodHound☆28Updated 9 months ago
- PoC for CVE-2021-36934, which enables a standard user to be able to retrieve the SAM, Security, and Software Registry hives in Windows 10…☆35Updated 2 years ago