bitsadmin / dir2jsonLinks
Tool for efficient directory enumeration
☆65Updated last year
Alternatives and similar repositories for dir2json
Users that are interested in dir2json are comparing it to the libraries listed below
Sorting:
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 3 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆76Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆58Updated 3 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 3 years ago
- C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments☆114Updated 3 years ago
- Secretsdump C# version only supporting local (live) operation☆53Updated 7 months ago
- a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab☆64Updated 11 months ago
- ☆53Updated 2 years ago
- Dropping a powershell script at %HOMEPATH%\Documents\WindowsPowershell\ , that contains the implant's path , and whenever powershell pro…☆86Updated 2 years ago
- My BloodHound custom queries☆26Updated 2 years ago
- A repository with my code snippets for research/education purposes.☆52Updated 2 years ago
- ☆52Updated 3 years ago
- Tool to start processes as SYSTEM using token duplication☆38Updated 5 years ago
- WhoAmI by asking the LDAP service on a domain controller.☆64Updated 3 years ago
- A small Aggressor script to help Red Teams identify foreign processes on a host machine☆84Updated 2 years ago
- A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.☆67Updated 2 years ago
- C# havoc implant☆101Updated 2 years ago
- Duplicate not owned Token from Running Process☆73Updated 2 years ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆87Updated 2 years ago
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆139Updated last year
- C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)☆60Updated 2 years ago
- Tool to aid in dumping LSASS process remotely☆42Updated 2 months ago
- Cobalt Strike profile generator using Jenkins to automate the heavy lifting☆38Updated 2 years ago
- Validates priv escalation of AD trusts☆48Updated 8 months ago
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆61Updated 4 months ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆81Updated 3 years ago
- ☆49Updated 2 years ago
- C# version of NTLMRawUnHide☆72Updated 3 years ago
- PoC-Malware-TTPs☆49Updated 2 years ago
- Modified version of Pypykatz to print encrypted credentials☆54Updated 2 years ago