Shac0x / WonkaLinks
Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but for security research and penetration testing! π«
β161Updated 3 months ago
Alternatives and similar repositories for Wonka
Users that are interested in Wonka are comparing it to the libraries listed below
Sorting:
- β158Updated 8 months ago
- Beacon Object File (BOF) port of DumpGuard for extracting NTLMv1 hashes from sessions on modern Windows systems.β200Updated 3 weeks ago
- The DCERPC only printerbug.py versionβ196Updated 3 months ago
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets β¦β147Updated 3 weeks ago
- Python tool to automatically perform SPN-less RBCD attacks.β112Updated 3 weeks ago
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCSβ150Updated 11 months ago
- Dominate the domain. Relay to royalty.β110Updated this week
- Tool to extract username and password of current user from PanGPA in plaintextβ89Updated last year
- PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk readsβ237Updated 3 months ago
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analysβ¦β93Updated last week
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA β¦β163Updated 3 months ago
- β57Updated 11 months ago
- Local SYSTEM auth trigger for relayingβ168Updated 6 months ago
- Client-side Encrypted Upload Server Python Scriptβ66Updated 6 months ago
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with itβ131Updated 5 months ago
- Living off the land searches for explorer and sharepointβ92Updated last month
- Lateral Movement as loggedon User via Speech Named Pipe COM & ISpeechNamedPipe + COM Hijackingβ135Updated 7 months ago
- A C# utility for interacting with SCOMβ95Updated 2 months ago
- A Python POC for CRED1 over SOCKS5β163Updated last year
- Permanently disable EDRs as local adminβ125Updated last month
- β106Updated 3 months ago
- Adversary Emulation Frameworkβ129Updated 7 months ago
- A tool for coercing and relaying Kerberos authentication over DCOM and RPC.β146Updated 6 months ago
- β50Updated 9 months ago
- Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)β128Updated 3 months ago
- SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.β158Updated last week
- Evasive Payload Delivery Server & C2 Redirectorβ112Updated 2 months ago
- Leveraging AWS Lambda Function URLs for C2 Redirectionβ45Updated 2 years ago
- Proof of concept for Kerberos Armoring abuse.β75Updated last month
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannelβ59Updated 9 months ago