asmtlab / ADHunt

Related projects ⓘ

Alternatives and complementary repositories for ADHunt

• arth0sz / Practice-AD-CS-Domain-Escalation
  Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…
  ☆88Updated last year
• RedTeamOperations / Red-Infra-Craft
  RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…
  ☆90Updated last week
• 4ndr34z / ntlmthief
  ☆51Updated 9 months ago
• IAMinZoho / OFFSEC-PowerShell
  My Favorite Offensive Security Scripts
  ☆62Updated last year
• rodolfomarianocy / Tricks-Pentest-Active-Directory
  Repository with quick triggers to help during Pentest in an Active Directory environment.
  ☆36Updated 3 weeks ago
• seriotonctf / AD-Tools
  List of some AD tools I frequently use
  ☆43Updated last month
• truerustyy / wcreddump
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆70Updated this week
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆55Updated 11 months ago
• g0h4n / RustHound-CE
  Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀
  ☆102Updated 3 weeks ago
• TheresAFewConors / MSSprinkler
  MSSprinkler is a password spraying utility for organizations to test their Microsoft Online accounts from an external perspective. It emp…
  ☆69Updated 3 weeks ago
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆55Updated last month
• SadProcessor / BloodHoundOperator
  BloodHound PowerShell client
  ☆44Updated last month
• seriotonctf / Red-Team-Notes
  ☆32Updated this week
• AetherBlack / abuseACL
  A python script to automatically list vulnerable Windows ACEs/ACLs.
  ☆43Updated 2 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆133Updated 3 months ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆78Updated 2 months ago
• asmtlab / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆88Updated 3 weeks ago
• Karmaz95 / crimson_lisp
  Linux Post-Exploitation tools wrapper
  ☆20Updated last year
• CyberSecurityUP / Windows-API-for-Red-Team
  ☆55Updated 7 months ago
• maliciousgroup / C2_Automation
  C2 Automation using Linode
  ☆78Updated 2 years ago
• login-securite / conpass
  Continuous password spraying tool
  ☆117Updated this week
• nyxgeek / imgdevil
  quick and dirty proof-of-concept to hide shells in images
  ☆49Updated 4 months ago
• g0h4n / RDE1
  RDE1 (Rusty Data Exfiltrator) is client and server tool allowing auditor to extract files from DNS and HTTPS protocols written in Rust. �…
  ☆40Updated last year
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆94Updated 5 months ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆166Updated last year
• 0xBienCuit / InfraRed-AWS
  ☆53Updated last month
• yehia-mamdouh / Shell3er
  PowerShell Reverse Shell
  ☆61Updated last year
• ad0nis / ntlm_relay_gat
  ☆143Updated 8 months ago
• AssuranceMaladieSec / AD-description-password-finder
  Retrieve AD accounts description and search for password in it
  ☆83Updated 2 years ago