Sw4mpf0x / PowerLurk
Malicious WMI Events using PowerShell
☆380Updated 8 years ago
Alternatives and similar repositories for PowerLurk:
Users that are interested in PowerLurk are comparing it to the libraries listed below
- ☆518Updated 2 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆377Updated 5 years ago
- Chameleon: A tool for evading Proxy categorisation☆479Updated 2 months ago
- Exchange privilege escalations to Active Directory☆748Updated last year
- ☆257Updated 2 years ago
- PSAmsi is a tool for auditing and defeating AMSI signatures.☆389Updated 6 years ago
- Detect and abuse risky SPNs☆260Updated 7 years ago
- ☆307Updated 6 years ago
- getsystem via parent process using ps1 & embeded c#☆395Updated last year
- This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance…☆437Updated 7 years ago
- DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.☆254Updated 6 years ago
- Enumerate all network shares in the current domain. Also, can resolve names to IP addresses.☆284Updated 4 years ago
- PowerShell Remote Download Cradle Generator & Obfuscator☆826Updated 6 years ago
- Active Directory ACL exploitation with BloodHound☆714Updated 3 years ago
- Assorted scripts and one off things☆263Updated 6 months ago
- Weaponizing Splunk with reverse and bind shells.☆176Updated 7 years ago
- Aggressor scripts I've made for Cobalt Strike☆403Updated last year
- Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)☆65Updated 3 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆247Updated 4 years ago
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆322Updated 5 years ago
- Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.☆198Updated 6 years ago
- SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket☆810Updated 3 years ago
- This version of PowerUp is now unsupported. See https://github.com/Veil-Framework/PowerTools/tree/master/PowerUp for the most current ver…☆243Updated 7 years ago
- SharpDump is a C# port of PowerSploit's Out-Minidump.ps1 functionality.☆663Updated 6 years ago
- A PowerShell module to deploy active directory decoy objects.☆226Updated 5 years ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆215Updated 4 years ago
- NetSPI PowerShell Scripts☆329Updated 3 weeks ago
- Exchange your privileges for Domain Admin privs by abusing Exchange☆996Updated 5 years ago
- Obfuscate powershell scripts by replacing Function names, Variables and Parameters.☆515Updated 2 years ago
- The Old BloodHound C# Ingestor (Deprecated)☆511Updated 2 years ago