Tanguy-Boisset / bloodhound-automation

Related projects ⓘ

Alternatives and complementary repositories for bloodhound-automation

• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆63Updated this week
• absolomb / FindMeAccess
  ☆64Updated this week
• Leo4j / Invoke-SessionHunter
  Retrieve and display information about active user sessions on remote computers. No admin privileges required.
  ☆165Updated 3 months ago
• Malcrove / SeamlessPass
  A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
  ☆129Updated 2 months ago
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆147Updated 3 weeks ago
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆157Updated 3 weeks ago
• LuemmelSec / Custom-BloodHound-Queries
  ☆173Updated 9 months ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆117Updated 6 months ago
• CobblePot59 / ADcheck
  Assess the security of your Active Directory with few or all privileges.
  ☆186Updated this week
• decoder-it / KrbRelay-SMBServer
  ☆187Updated last month
• CCob / Shwmae
  ☆129Updated last month
• truerustyy / wcreddump
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆70Updated this week
• CCob / DGPOEdit
  Disconnected GPO Editor - A Group Policy Manager launcher to allow editing of domain GPOs from non-domain joined machines
  ☆152Updated 2 months ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆79Updated 4 months ago
• asmtlab / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆88Updated 3 weeks ago
• techspence / BadShares
  A tool to create randomly insecure file shares that also contain unsecured credential files
  ☆30Updated 6 months ago
• techspence / ADeleginator
  A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory
  ☆152Updated 2 months ago
• sse-secure-systems / Active-Directory-Spotlights
  ☆34Updated last year
• mlcsec / Graphpython
  Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
  ☆134Updated 3 months ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆78Updated 2 months ago
• LaresLLC / SlinkyCat
  Slinky Cat attempts to give users an easy-to-navigate menu offering predefined Active Directory Service Interfaces (ADSI) and .NET querie…
  ☆79Updated last year
• g0h4n / RustHound-CE
  Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀
  ☆104Updated last month
• badsectorlabs / sccm-http-looter
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆164Updated last month
• powerseb / PowerExtract
  ☆112Updated last year
• synacktiv / ntdissector
  ☆127Updated 3 months ago
• Flangvik / Bobber
  Bounces when a fish bites - Evilginx database monitoring with exfiltration automation
  ☆158Updated 5 months ago
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆94Updated 5 months ago
• skelsec / pysnaffler
  pysnaffler
  ☆86Updated 3 months ago
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆119Updated 3 years ago