Tylous / Talon
A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.
☆35Updated 8 months ago
Related projects ⓘ
Alternatives and complementary repositories for Talon
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆94Updated 5 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆147Updated 3 weeks ago
- A Python POC for CRED1 over SOCKS5☆134Updated last month
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆82Updated last year
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆133Updated 4 months ago
- Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀☆104Updated last month
- A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure…☆35Updated last year
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆166Updated last year
- ☆112Updated last year
- ☆36Updated last month
- ☆151Updated 2 weeks ago
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆88Updated 3 weeks ago
- Living off the land searches for explorer and sharepoint☆53Updated 3 weeks ago
- PowerShell Reverse Shell☆61Updated last year
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆98Updated last year
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆106Updated 6 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆169Updated last month
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆78Updated 2 months ago
- Leveraging AWS Lambda Function URLs for C2 Redirection☆24Updated last year
- Lateral Movement☆119Updated last year
- Hybrid AD utilities for ROADtools☆63Updated this week
- Tool for Active Directory Certificate Services enumeration and abuse☆64Updated this week
- ☆143Updated 8 months ago
- ACL abuse swiss-knife☆117Updated last year
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆78Updated 7 months ago
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆36Updated 8 months ago
- Continuous password spraying tool☆117Updated this week
- A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks☆143Updated last year
- Python setter/getter for property ms-Mcs-AdmPwd used by LAPS.☆78Updated 3 weeks ago
- Automated exploitation of MSSQL servers at scale☆82Updated this week