Tw1sm / aesKrbKeyGen
Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3
☆50Updated 2 years ago
Alternatives and similar repositories for aesKrbKeyGen:
Users that are interested in aesKrbKeyGen are comparing it to the libraries listed below
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- Secretsdump C# version only supporting local (live) operation☆48Updated last year
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 3 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆31Updated 2 years ago
- C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…☆39Updated last year
- WhoAmI by asking the LDAP service on a domain controller.☆61Updated 3 years ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆83Updated last year
- A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host☆39Updated last year
- A third-party Gopher Assassin for the Havoc Framework.☆44Updated last year
- Beacon Object Files (not Buffer Overflows)☆53Updated last year
- Run Cobalt Strike BOFs in Brute Ratel C4!☆61Updated last month
- CNA that interacts with a JAR file to dynamically rename GUI tabs within Cobalt Strike from a JSON file.☆23Updated 2 years ago
- C# Port of LdapRelayScan☆79Updated 2 years ago
- A care package of useful bofs for red team engagments☆54Updated 2 months ago
- ☆24Updated 2 years ago
- ☆47Updated 2 years ago
- Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆14Updated 2 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆73Updated 2 years ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆33Updated last year
- Bypass AMSI via PowerShell by splitting a file into multiple chunks☆50Updated 3 years ago
- Cobalt Strike beacon object file that allows you to query and make changes to the Windows Registry☆26Updated 4 years ago
- DirSync is a simple proof of concept PowerShell module to demonstrate the impact of delegating DS-Replication-Get-Changes and DS-Replicat…☆27Updated last year
- Active Directory certificate abuse☆33Updated 2 years ago
- Modified versions of the Cobalt Strike Process Injection Kit☆92Updated last year
- A BOF port of the research of @thefLinkk and @codewhitesec☆97Updated 3 years ago
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆85Updated 2 years ago
- Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly☆117Updated 4 months ago
- Active Directory certificate abuse.☆37Updated 3 years ago
- ☆93Updated 2 years ago