TarlogicSecurity / tickeyLinks
Tool to extract Kerberos tickets from Linux kernel keys.
☆234Updated 6 years ago
Alternatives and similar repositories for tickey
Users that are interested in tickey are comparing it to the libraries listed below
Sorting:
- .NET 4.0 Console App to browse VMDK / VHD images and extract files☆199Updated 5 years ago
- Kerberos manipulation library in pure Python☆296Updated last month
- lateral movement techniques that can be used during red team exercises☆273Updated 5 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆251Updated 5 years ago
- A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.☆169Updated 3 years ago
- Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.☆181Updated 2 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆167Updated 5 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆258Updated 4 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆113Updated 6 years ago
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities☆205Updated 5 years ago
- Python based BloodHound data importer☆147Updated 2 years ago
- Tool for assessing on-premises Microsoft servers authentication such as ADFS, Skype, Exchange, and RDWeb☆149Updated 5 years ago
- Dll that can be used for side loading and other attack vector.☆203Updated 5 years ago
- Presentation material presented by Outflank team members at public events.☆192Updated 2 months ago
- Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.☆208Updated 7 years ago
- Silentbridge is a toolkit for bypassing 802.1x-2010 and 802.1x-2004.☆267Updated 2 years ago
- ☆173Updated 7 years ago
- Fake User Generator for Active Directory Environments☆158Updated 7 years ago
- Automated, extensible toolset that runs cypher queries against Bloodhound's Neo4j backend and saves output to spreadsheets.☆255Updated 4 years ago
- Automating juicy potato local privilege escalation exploit for penetration testers☆145Updated 4 years ago
- A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object☆247Updated 5 years ago
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆331Updated 6 years ago
- Parse NTLM challenge messages over HTTP and SMB☆151Updated 3 years ago
- Check if MS-RPRN is remotely available with powershell/c#☆178Updated 7 years ago
- C# Wrapper around Chisel from https://github.com/jpillora/chisel☆161Updated 2 years ago
- Physmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely☆421Updated 3 years ago
- Asynchronous Password Spraying Tool in C# for Windows Environments☆317Updated last year
- A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…☆65Updated 6 years ago
- ☄️ go-out - A Golang egress buster.☆126Updated last year
- A curated list of awesome BloodhoundAD resources☆236Updated 3 years ago