Shac0x / WonkaLinks
Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but for security research and penetration testing! π«
β155Updated 2 months ago
Alternatives and similar repositories for Wonka
Users that are interested in Wonka are comparing it to the libraries listed below
Sorting:
- β155Updated 8 months ago
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analysβ¦β93Updated 2 months ago
- The DCERPC only printerbug.py versionβ186Updated 2 months ago
- Living off the land searches for explorer and sharepointβ92Updated last month
- Beacon Object File (BOF) port of DumpGuard for extracting NTLMv1 hashes from sessions on modern Windows systems.β102Updated last week
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA β¦β162Updated 2 months ago
- Permanently disable EDRs as local adminβ124Updated 3 weeks ago
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets β¦β111Updated last week
- PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk readsβ238Updated 2 months ago
- Local SYSTEM auth trigger for relayingβ168Updated 5 months ago
- A C# utility for interacting with SCOMβ94Updated last month
- Python tool to automatically perform SPN-less RBCD attacks.β68Updated this week
- A Python POC for CRED1 over SOCKS5β162Updated last year
- Tool to extract username and password of current user from PanGPA in plaintextβ88Updated last year
- A tool for coercing and relaying Kerberos authentication over DCOM and RPC.β146Updated 5 months ago
- SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.β154Updated this week
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCSβ150Updated 11 months ago
- Advanced In-Memory PowerShell Process Injection Frameworkβ72Updated 5 months ago
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijackingβ134Updated 6 months ago
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with itβ130Updated 4 months ago
- Evasive Payload Delivery Server & C2 Redirectorβ112Updated 2 months ago
- Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)β128Updated 2 months ago
- Adversary Emulation Frameworkβ128Updated 6 months ago
- Client-side Encrypted Upload Server Python Scriptβ66Updated 6 months ago
- β50Updated 9 months ago
- Collection of BOFs created for red team/adversary engagements. Created to be small and interchangeable, for quick recon or eventing.β204Updated this week
- SCEP request tool for AD CS and Intuneβ73Updated 2 months ago
- β57Updated 10 months ago
- OAuth Device Code Phishing Toolkitβ105Updated 4 months ago
- Leveraging AWS Lambda Function URLs for C2 Redirectionβ45Updated 2 years ago