Sw4mpf0x / PowerLurk
Malicious WMI Events using PowerShell
☆384Updated 8 years ago
Alternatives and similar repositories for PowerLurk:
Users that are interested in PowerLurk are comparing it to the libraries listed below
- ☆519Updated 2 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆378Updated 5 years ago
- Chameleon: A tool for evading Proxy categorisation☆491Updated 4 months ago
- Exchange privilege escalations to Active Directory☆759Updated last year
- PSAmsi is a tool for auditing and defeating AMSI signatures.☆390Updated 6 years ago
- ☆257Updated 2 years ago
- ☆307Updated 6 years ago
- PowerShell Remote Download Cradle Generator & Obfuscator☆833Updated 7 years ago
- This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance…☆443Updated 7 years ago
- getsystem via parent process using ps1 & embeded c#☆404Updated last year
- Active Directory ACL exploitation with BloodHound☆721Updated 3 years ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆252Updated 6 years ago
- Detect and abuse risky SPNs☆262Updated 7 years ago
- Assorted scripts and one off things☆267Updated 8 months ago
- Enumerate all network shares in the current domain. Also, can resolve names to IP addresses.☆291Updated 5 years ago
- A PowerShell module to deploy active directory decoy objects.☆227Updated 5 years ago
- SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket☆840Updated 3 years ago
- Kerberoast attack -pure python-�☆427Updated last year
- RACE is a PowerShell module for executing ACL attacks against Windows targets.☆219Updated last year
- This version of PowerUp is now unsupported. See https://github.com/Veil-Framework/PowerTools/tree/master/PowerUp for the most current ver…☆245Updated 8 years ago
- Executes PowerShell from an unmanaged process☆487Updated 9 years ago
- Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)☆66Updated 3 years ago
- Rid_enum is a null session RID cycle attack for brute forcing domain controllers.☆272Updated 8 months ago
- Obfuscate powershell scripts by replacing Function names, Variables and Parameters.☆516Updated 2 years ago
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆326Updated 5 years ago
- SharpDump is a C# port of PowerSploit's Out-Minidump.ps1 functionality.☆664Updated 6 years ago
- Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.☆202Updated 6 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆248Updated 4 years ago
- Asynchronous Password Spraying Tool in C# for Windows Environments☆312Updated last year
- Aggressor scripts I've made for Cobalt Strike☆407Updated last year