Viralmaniar / Remote-Desktop-Caching-
This tool allows one to recover old RDP (mstsc) session information in the form of broken PNG files. These PNG files allows Red Team member to extract juicy information such as LAPS passwords or any sensitive information on the screen. Blue Team member can reconstruct PNG files to see what an attacker did on a compromised host. It is extremely u…
☆212Updated 6 years ago
Alternatives and similar repositories for Remote-Desktop-Caching-:
Users that are interested in Remote-Desktop-Caching- are comparing it to the libraries listed below
- ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.☆229Updated 7 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆392Updated 4 years ago
- Remote Recon and Collection☆448Updated 7 years ago
- Various Cheat Sheets☆180Updated 3 years ago
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆445Updated 2 years ago
- Phishing Template Generation Made Easy☆164Updated 7 years ago
- ☆280Updated 7 years ago
- This script will create a POC that will steal NTML hashes from a remote computer. Do not use this for illegal purposes.The author does no…☆245Updated last year
- OFFICE DDEAUTO Payload Generation script☆127Updated 4 years ago
- A collection of scripts I've written to help red and blue teams with malware persistence techniques.☆127Updated 6 years ago
- Invokes a Windows Security Login Prompt and outputs the clear text password.☆170Updated 8 years ago
- Lazykatz is an automation developed to extract credentials from remote targets protected with AV and/or application whitelisting software…☆198Updated 7 years ago
- SMB Relay Attack Script☆148Updated 6 years ago
- Quick Malicious ClickOnceGenerator for Red Team☆246Updated 3 years ago
- ☆272Updated 2 years ago
- Pypykatz server☆124Updated 5 years ago
- Check-LocalAdminHash is a PowerShell tool that attempts to authenticate to multiple hosts over either WMI or SMB using a password hash to…☆174Updated last year
- Rapid Attack Infrastructure (RAI)☆303Updated last month
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆168Updated last year
- Some PowerShell Stuff☆281Updated 2 years ago
- Automated Tactics Techniques & Procedures☆252Updated last year
- Some .ps1 scripts for pentesting☆131Updated 4 years ago
- IR-Tools - PowerShell tools for IR☆128Updated 7 years ago
- Feed the tool a .nessus file and it will automatically get you MSF shell☆234Updated 2 years ago
- Powershell script to exfiltrate large files quickly and securely☆122Updated 2 years ago
- A script to test an RDP host for sticky keys and utilman backdoor.☆257Updated 8 years ago
- One line PS scripts that may come handy during your network assesment☆75Updated 4 years ago
- 3 tools that work together to simplify reconaissance of Windows File Shares☆165Updated 6 years ago
- Powershell Empire Persistence finder☆117Updated 7 years ago
- DropboxC2C is a post-exploitation agent which uses Dropbox Infrastructure for command and control operations.☆147Updated 6 years ago