Tw1sm / PySQLReconLinks
Offensive MSSQL toolkit written in Python, based off SQLRecon
☆203Updated 6 months ago
Alternatives and similar repositories for PySQLRecon
Users that are interested in PySQLRecon are comparing it to the libraries listed below
Sorting:
- Continuous password spraying tool☆191Updated 5 months ago
- ☆159Updated last year
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆106Updated 3 weeks ago
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆237Updated 5 months ago
- ��☆89Updated 6 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆174Updated 2 months ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆314Updated 8 months ago
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆229Updated 2 months ago
- Automated exploitation of MSSQL servers at scale☆112Updated last week
- Everything and anything related to password spraying☆142Updated last year
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆211Updated 10 months ago
- Use ESC1 to perform a makeshift DCSync and dump hashes☆211Updated last year
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆82Updated 10 months ago
- A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …☆199Updated last month
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆130Updated 6 months ago
- psexecsvc - a python implementation of PSExec's native service implementation☆206Updated 5 months ago
- Enumerate Domain Users Without Authentication☆256Updated 3 months ago
- Active Directory Authentication Library☆78Updated 2 weeks ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆176Updated 2 years ago
- Generate and Manage KeyCredentialLinks☆160Updated 2 weeks ago
- Collection of random RedTeam scripts.☆207Updated last year
- Execute commands interactively on remote Windows machines using the WinRM protocol☆196Updated last week
- A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks☆165Updated last year
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆204Updated 9 months ago
- Retrieve and display information about active user sessions on remote computers. No admin privileges required.☆190Updated 11 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆123Updated 4 months ago
- PowerShell runner for executing malicious payloads in order to bypass Windows Defender.☆73Updated 3 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆269Updated this week
- Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…☆105Updated last month
- ☆181Updated last month