TheresAFewConors / MSSprinkler
MSSprinkler is a password spraying utility for organizations to test their Microsoft Online accounts from an external perspective. It employs a 'low-and-slow' approach to avoid locking out accounts, and provides verbose information related to accounts and tenant information.
☆66Updated 2 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for MSSprinkler
- Parses Snaffler output file and generate beautified outputs.☆37Updated 2 months ago
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆70Updated last week
- RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…☆75Updated last week
- ☆51Updated 9 months ago
- PowerShell Reverse Shell☆61Updated last year
- Living off the land searches for explorer and sharepoint☆49Updated 2 weeks ago
- Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀☆94Updated 2 weeks ago
- PowerShell Obfuscator☆88Updated 5 months ago
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆54Updated 11 months ago
- ☆142Updated 8 months ago
- linikatz is a tool to attack AD on UNIX☆137Updated last year
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆85Updated last year
- Azure Service Subdomain Enumeration☆42Updated 2 months ago
- Dump Kerberos tickets from the KCM database of SSSD☆50Updated 2 months ago
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆123Updated last month
- ☆43Updated 4 months ago
- BloodHound PowerShell client☆44Updated 3 weeks ago
- Automated exploitation of MSSQL servers at scale☆81Updated last week
- Scraping Kit is made up of several tools for scraping services for keywords, useful for initial enumeration of Domain Controllers or if y…☆95Updated last year
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆77Updated last month
- Repository with quick triggers to help during Pentest in an Active Directory environment.☆36Updated 2 weeks ago
- List of some AD tools I frequently use☆42Updated last month
- Inject RDPThief into memory with PowerShell.☆55Updated last month
- Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit☆131Updated 3 months ago
- Enumerate valid users within Microsoft Teams and OneDrive with clean output.☆58Updated last month
- ☆40Updated last year
- ☆41Updated 2 years ago
- Everything and anything related to password spraying☆126Updated 5 months ago
- Script designed to identify CanaryTokens within Microsoft Office documents and Acrobat Reader PDF (docx, xlsx, pptx, pdf).☆108Updated 9 months ago