brandonscholet / dumpCake

Related projects ⓘ

Alternatives and complementary repositories for dumpCake

• RedSiege / DigDug
  ☆71Updated 3 months ago
• RedSiege / AutoFunkt
  Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles
  ☆189Updated 4 months ago
• zblurx / acltoolkit
  ACL abuse swiss-knife
  ☆117Updated last year
• RedSiege / GPPDeception
  This script generates a groups.xml file that mimics a real GPP to create a new user on domain-joined computers
  ☆44Updated 4 years ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆166Updated last year
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆94Updated 5 months ago
• k4sth4 / Juicy-Potato
  Windows Privilege Escalation
  ☆43Updated 2 years ago
• WKL-Sec / WMIExec
  Set of python scripts which perform different ways of command execution via WMI protocol.
  ☆158Updated last year
• praetorian-inc / NTLMRecon
  A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.
  ☆79Updated 11 months ago
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆78Updated 2 years ago
• p0dalirius / MSSQL-Analysis-Coerce
  A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.
  ☆124Updated last year
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆77Updated last year
• powerseb / PowerExtract
  ☆112Updated last year
• AssuranceMaladieSec / AD-description-password-finder
  Retrieve AD accounts description and search for password in it
  ☆83Updated 2 years ago
• m8sec / CVE-2021-34527
  PrintNightmare (CVE-2021-34527) PoC Exploit
  ☆106Updated last year
• susMdT / SharpAgent
  C# havoc implant
  ☆96Updated last year
• horizon3ai / CVE-2023-27532
  POC for Veeam Backup and Replication CVE-2023-27532
  ☆62Updated last year
• lefayjey / SharpSQLPwn
  C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments
  ☆107Updated 2 years ago
• optiv / KnockKnock
  Enumerate valid users within Microsoft Teams and OneDrive with clean output.
  ☆58Updated last month
• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆36Updated last year
• Laokoon-SecurITy / Cortex-XDR-Config-Extractor
  Cortex XDR Config Extractor
  ☆119Updated last year
• dievus / PowerShellRunner
  PowerShell runner for executing malicious payloads in order to bypass Windows Defender.
  ☆60Updated 2 years ago
• ka7ana / CVE-2023-23397
  Simple PoC in PowerShell for CVE-2023-23397
  ☆41Updated last year
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• CodeXTF2 / cobaltstrike-headless
  Aggressorscript that turns the headless aggressor client into a (mostly) functional cobalt strike client.
  ☆147Updated 2 years ago
• CICADA8-Research / LogHunter
  Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
  ☆57Updated 5 months ago
• praetorian-inc / ADFSRelay
  Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS
  ☆173Updated 2 years ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆78Updated 2 months ago
• t3hbb / NSGenCS
  Extendable payload obfuscation and delivery framework
  ☆141Updated 2 years ago
• PhrozenIO / SharpFtpC2
  A Streamlined FTP-Driven Command and Control Conduit for Interconnecting Remote Systems.
  ☆86Updated last year