YossiSassi / Invoke-AdminSDHolderPermissionCheckLinks
Analyzes AdminSDHolder permissions & compares with default baseline or a previous run, to detect potential backdoor/excessive persistent permission(s)
☆15Updated 2 months ago
Alternatives and similar repositories for Invoke-AdminSDHolderPermissionCheck
Users that are interested in Invoke-AdminSDHolderPermissionCheck are comparing it to the libraries listed below
Sorting:
- DFSCoerce exe revisited version with custom authentication☆40Updated last year
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 3 years ago
- Proof of Concept Exploit for CVE-2024-9465☆29Updated 8 months ago
- ☆48Updated 2 years ago
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆13Updated last month
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆31Updated 3 months ago
- .NET port of Leron Gray's azbelt tool.☆26Updated last year
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆32Updated last month
- A simple rpc2socks alternative in pure Go.☆28Updated 11 months ago
- Validates priv escalation of AD trusts☆44Updated 2 months ago
- SAM Dumping in C#☆48Updated 5 months ago
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆57Updated 3 weeks ago
- Tomcat backdoor based on CS blog☆27Updated last year
- Cobalt Strike BOFS☆16Updated last year
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.☆25Updated 10 months ago
- A vSphere deployment of GOADv2 BETA Testing (v0.1)☆26Updated last year
- ☆52Updated last year
- ☆22Updated last year
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated last year
- Items related to the RedELK workshop given at security conferences☆29Updated last year
- Extract registry and NTDS secrets from local or remote disk images☆43Updated 3 months ago
- Exploit for Arbitrary File Move vulnerability in ZoneAlarm AV☆26Updated 2 years ago
- A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host☆39Updated last year
- ShootCutMe an .LNK file creator tool for redteamer☆13Updated 8 months ago
- ☆25Updated 3 years ago
- Office 365 and Exchange Enumeration Version 2☆18Updated last year
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆32Updated last year
- Perform Windows domain enumeration via LDAP☆36Updated 3 years ago
- ☆19Updated last year