YossiSassi / Invoke-AdminSDHolderPermissionCheckLinks
Analyzes AdminSDHolder permissions & compares with default baseline or a previous run, to detect potential backdoor/excessive persistent permission(s)
☆15Updated 5 months ago
Alternatives and similar repositories for Invoke-AdminSDHolderPermissionCheck
Users that are interested in Invoke-AdminSDHolderPermissionCheck are comparing it to the libraries listed below
Sorting:
- Proof of Concept Exploit for CVE-2024-9465☆29Updated 11 months ago
- Tomcat backdoor based on CS blog☆27Updated 2 years ago
- ☆48Updated 2 years ago
- .NET port of Leron Gray's azbelt tool.☆26Updated 2 years ago
- ☆22Updated 2 years ago
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆59Updated 2 months ago
- ☆52Updated last year
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 3 years ago
- Brute Ratel LDAP filtering and sorting tool. Easily take BR log output and pull hostnames for ease of use with other red team tooling. Su…☆38Updated last year
- ☆31Updated 3 years ago
- Duplicate not owned Token from Running Process☆72Updated 2 years ago
- DFSCoerce exe revisited version with custom authentication☆41Updated last year
- Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC☆44Updated last year
- Tools for Attacking Pleasant Password Server☆22Updated 2 years ago
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆56Updated last year
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆13Updated 2 months ago
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆21Updated 3 years ago
- Items related to the RedELK workshop given at security conferences☆30Updated 2 years ago
- A tool to exchange decryption keys for command and control (C2) beacons and implants through DNS records.☆39Updated 2 years ago
- Tamper Active Directory user attributes to collect their hashes with MS-SNTP☆41Updated 8 months ago
- A simple rpc2socks alternative in pure Go.☆29Updated last year
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- AWSDoor is a red team automation tool designed to simulate advanced attacker behavior in AWS environments☆26Updated 2 weeks ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated last year
- Tool to start processes as SYSTEM using token duplication☆38Updated 4 years ago
- Validates priv escalation of AD trusts☆47Updated 6 months ago
- A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.☆45Updated 2 years ago
- ☆19Updated last year
- Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.☆44Updated last year
- in-process powershell runner for BRC4☆47Updated last year