byt3bl33d3r / DeathStar
Uses Empire's (https://github.com/BC-SECURITY/Empire) RESTful API to automate gaining Domain and/or Enterprise Admin rights in Active Directory environments using some of the most common offensive TTPs.
☆1,585Updated 9 months ago
Related projects ⓘ
Alternatives and complementary repositories for DeathStar
- Payload Generation Framework☆1,802Updated 3 months ago
- PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.☆1,895Updated 6 years ago
- HTA encryption tool for RedTeams☆1,371Updated 2 years ago
- RedSnarf is a pen-testing / red-teaming tool for Windows environments☆1,203Updated 4 years ago
- An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR☆2,197Updated 11 months ago
- A PowerShell based utility for the creation of malicious Office macro documents.☆1,101Updated 7 years ago
- A collection of Red Team focused tools, scripts, and notes☆1,114Updated 5 years ago
- TrevorC2 is a legitimate website (browsable) that tunnels client/server communications for covert command execution.☆1,225Updated 2 years ago
- PowerShell Runspace Post Exploitation Toolkit☆1,523Updated 5 years ago
- Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient☆1,451Updated 2 years ago
- The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…☆1,122Updated 3 years ago
- Cheat sheets for various projects.☆1,042Updated 7 years ago
- Pop shells like a master.☆1,443Updated 5 years ago
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆2,556Updated 3 months ago
- Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS☆1,401Updated 6 years ago
- Active Directory Assessment and Privilege Escalation Script☆1,092Updated last year
- Run PowerShell command without invoking powershell.exe☆1,474Updated last year
- Red Team Tips as posted by @vysecurity on Twitter☆1,049Updated 4 years ago
- Gets plaintext Active Directory credentials if you're on the internal network but outside the AD environment☆1,183Updated 6 years ago
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆2,934Updated 3 months ago
- PowerShell Pass The Hash Utils☆1,480Updated 5 years ago
- A tool to abuse Exchange services☆2,171Updated 5 months ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆2,014Updated last month
- AntiVirus Evasion Tool☆1,651Updated last year
- Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)☆1,592Updated 5 years ago
- Perform a MitM attack and extract clear text credentials from RDP connections☆1,398Updated last year
- Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems☆1,486Updated last year
- SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, Supe…☆1,229Updated last year
- Domain Password Audit Tool for Pentesters☆908Updated 2 years ago