ZeroDayLab / PowerSploit
PowerSploit - A PowerShell Post-Exploitation Framework
☆215Updated 2 years ago
Related projects: ⓘ
- ☆342Updated 3 years ago
- A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.☆163Updated 2 years ago
- RACE is a PowerShell module for executing ACL attacks against Windows targets.☆207Updated last year
- scan for NTLM directories☆345Updated 2 months ago
- WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations☆339Updated 3 years ago
- Collection of some of my own tools with other great open source tools out there packaged into a powershell module☆140Updated 2 years ago
- PowerShell Constrained Language Mode Bypass☆221Updated 3 years ago
- Dumping LAPS from Python☆251Updated last year
- Lists who can read any gMSA password blobs and parses them if the current user has access.☆236Updated 7 months ago
- Kerberoast with ACL abuse capabilities☆306Updated last month
- Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket☆488Updated 2 years ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆213Updated 3 years ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆371Updated 5 months ago
- SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket☆733Updated 3 years ago
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆412Updated 2 years ago
- Inject remote template link into word document for remote template injection☆150Updated 3 years ago
- Password spraying tool and Bloodhound integration☆203Updated last year
- ☆189Updated last year
- A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)☆177Updated 3 years ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆360Updated last year
- Automating juicy potato local privilege escalation exploit for penetration testers☆138Updated 3 years ago
- Simple script to extract useful informations from the combo BloodHound + Neo4j☆190Updated 9 months ago
- ☆345Updated 3 years ago
- Collection of cyphers for bloodhound☆141Updated 2 months ago
- Enumerate Domain Data☆314Updated last year
- Powershell crazy and sometimes diabolic scripts☆140Updated 4 years ago
- ADCS abuser☆244Updated last year
- Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration feature…☆276Updated last year
- Bypass for PowerShell Constrained Language Mode☆359Updated 2 years ago
- NTLMRawUnhide.py is a Python3 script designed to parse network packet capture files and extract NTLMv2 hashes in a crackable format. The …☆299Updated 10 months ago