YossiSassi / Invoke-AdminSDHolderPermissionCheckLinks
Analyzes AdminSDHolder permissions & compares with default baseline or a previous run, to detect potential backdoor/excessive persistent permission(s)
☆15Updated 3 months ago
Alternatives and similar repositories for Invoke-AdminSDHolderPermissionCheck
Users that are interested in Invoke-AdminSDHolderPermissionCheck are comparing it to the libraries listed below
Sorting:
- Tomcat backdoor based on CS blog☆27Updated 2 years ago
- Proof of Concept Exploit for CVE-2024-9465☆29Updated 9 months ago
- ☆48Updated 2 years ago
- DFSCoerce exe revisited version with custom authentication☆41Updated last year
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 3 years ago
- Duplicate not owned Token from Running Process☆72Updated 2 years ago
- ☆19Updated last year
- .NET port of Leron Gray's azbelt tool.☆26Updated last year
- Cobalt Strike BOFS☆16Updated last year
- Remote Template Injection Toolkit☆42Updated last year
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆58Updated 3 weeks ago
- ☆52Updated last year
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆56Updated last year
- A simple rpc2socks alternative in pure Go.☆28Updated last year
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- ☆31Updated 2 years ago
- ☆22Updated 2 years ago
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆13Updated 2 weeks ago
- Tools for Attacking Pleasant Password Server☆22Updated last year
- A repository with my code snippets for research/education purposes.☆50Updated 2 years ago
- Brute Ratel LDAP filtering and sorting tool. Easily take BR log output and pull hostnames for ease of use with other red team tooling. Su…☆38Updated last year
- Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil☆21Updated 2 years ago
- Demonstration of Early Bird APC Injection - MITRE ID T1055.004☆33Updated last year
- Validates priv escalation of AD trusts☆46Updated 4 months ago
- Items related to the RedELK workshop given at security conferences☆29Updated last year
- A collection of tools using OCR to extract potential usernames from RDP screenshots.☆30Updated last year
- Identify binaries with Authenticode digital signatures signed to an internal CA/domain☆40Updated last year
- Contexter - A secondary context path traversal / server-side parameter pollution testing tool written in Python 3☆22Updated 11 months ago
- SAM Dumping in C#☆49Updated 6 months ago
- A lightweight HTTP/HTTPS reverse proxy for efficient, policy-based traffic filtering and redirection.☆45Updated 2 years ago