WiredPulse / Invoke-HiveNightmare
PoC for CVE-2021-36934, which enables a standard user to be able to retrieve the SAM, Security, and Software Registry hives in Windows 10 version 1809 or newer
☆34Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for Invoke-HiveNightmare
- Federated Office365 user enumeration based on correlated response trend analysis☆47Updated 2 years ago
- Add SD for controlled computer object to a target object for RBCD using LDAP☆38Updated 3 years ago
- Tradecraft Development Fundamentals☆40Updated 3 years ago
- Convert an LDIF file to JSON files ingestible by BloodHound☆40Updated 2 months ago
- Weaponizing CLRvoyance for Post-Ex .NET Execution☆35Updated 3 years ago
- Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).☆53Updated 2 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 2 years ago
- ☆68Updated last year
- ☆51Updated 3 years ago
- A collection of Neo4j/BloodHound queries to collect interesting information.☆45Updated 2 years ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆65Updated 5 months ago
- Find Inbound Email Domains☆21Updated 11 months ago
- ☆41Updated 2 years ago
- Timestomping module: overwrite file create/modify times in .NET (no pinvoke)☆22Updated 2 years ago
- Dump LSASS process in Task Manager without triggering Defender.☆18Updated last year
- My BloodHound custom queries☆23Updated last year
- terraform deployment for red team☆21Updated last year
- (kinda) Malicious Outlook Reader☆17Updated 3 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆41Updated last month
- ☆12Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 2 years ago
- Exchangelib wrapper for pentesting☆56Updated 5 months ago
- ☆9Updated this week
- Scripts for public use that we've randomly written, or have updated from other people's work.☆38Updated 5 months ago
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆52Updated 4 years ago
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆85Updated last year
- Python3 tool to perform password spraying against Microsoft Online service using various methods☆84Updated last year
- GhostLoader - AppDomainManager - Injection - 攻壳机动队☆51Updated 4 years ago