The-Viper-One / Invoke-PassTheCertView external linksLinks
Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel
☆59Apr 13, 2025Updated 10 months ago
Alternatives and similar repositories for Invoke-PassTheCert
Users that are interested in Invoke-PassTheCert are comparing it to the libraries listed below
Sorting:
- GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…☆35Nov 24, 2024Updated last year
- PowerShell Script to automatically abuse the BadSuccessor vulnerability (CVE-2025-53779)☆44Nov 19, 2025Updated 2 months ago
- ☆26Aug 11, 2025Updated 6 months ago
- A C project that generates usernames based on input lists and format you decide yourself☆11Jan 23, 2025Updated last year
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆61Feb 4, 2026Updated last week
- ☆198Mar 28, 2025Updated 10 months ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆29Jul 25, 2023Updated 2 years ago
- Random BOFs for LDAP tradecraft☆72Sep 9, 2025Updated 5 months ago
- PowerShell script to generate ShellCode in various formats☆45Sep 25, 2024Updated last year
- miscellaneous sploit scripts/hacks☆18Feb 3, 2025Updated last year
- Enumerate Domain Users Without Authentication☆281Apr 22, 2025Updated 9 months ago
- Red teaming tool to dump LSASS memory, bypassing basic countermeasures.☆245Nov 2, 2025Updated 3 months ago
- ☆33Mar 19, 2025Updated 10 months ago
- ☆41Feb 20, 2025Updated 11 months ago
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆163Nov 2, 2025Updated 3 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆275Jul 1, 2025Updated 7 months ago
- XSSRecon automates the process of testing URL parameters for reflection of a test payload rix4uni and further checks how special characte…☆51Jan 16, 2026Updated 3 weeks ago
- Impacket pre-compiled binaries☆18Jul 31, 2023Updated 2 years ago
- One-header configurable C++20 COFF loader☆21Jul 21, 2025Updated 6 months ago
- Tool for viewing NTDS.dit☆191Mar 14, 2025Updated 11 months ago
- Indirect Syscall implementation to bypass userland NTAPIs hooking.☆84Aug 13, 2024Updated last year
- Test AMSI Provider implementation in C#☆42Dec 18, 2024Updated last year
- ☆235Oct 8, 2024Updated last year
- Alternative Read and Write primitives using Rtl* functions the unintended way.☆78Aug 25, 2025Updated 5 months ago
- converts sRDI compatible dlls to shellcode☆35Jan 20, 2025Updated last year
- sl0ppy-PrivescTaskCreator.ps1☆40Oct 8, 2025Updated 4 months ago
- Smart keylogging capability to steal SSH Credentials including password & Private Key☆151Mar 26, 2025Updated 10 months ago
- 「⚔️」Ring 0 Rootkit for Linux Kernels x86/x86_64 5.x/6.x☆27Apr 10, 2025Updated 10 months ago
- ☆41Sep 9, 2023Updated 2 years ago
- ☆26Aug 5, 2025Updated 6 months ago
- The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…☆172Sep 3, 2025Updated 5 months ago
- Driver Reverse & Exploitation☆82Sep 4, 2025Updated 5 months ago
- Windows WLAN AutoConfig Service Elevation of Privilege Vulnerability☆24Feb 5, 2025Updated last year
- Lateral Movement Bof with MSI ODBC Driver Install☆144Sep 30, 2025Updated 4 months ago
- Terms of Use Conditional Access M365 Evilginx Phishlet☆44Jun 23, 2025Updated 7 months ago
- Local SYSTEM auth trigger for relaying - X☆155Jul 23, 2025Updated 6 months ago
- AppLocker-Based EDR Neutralization☆302Dec 19, 2025Updated last month
- JamfHound is a python3 project designed to collect and identify attack paths in Jamf Pro tenants based on existing object permissions by …☆117Sep 2, 2025Updated 5 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆181May 19, 2025Updated 8 months ago