byt3bl33d3r / ItWasAllADream
A PrintNightmare (CVE-2021-34527) Python Scanner. Scan entire subnets for hosts vulnerable to the PrintNightmare RCE
☆784Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for ItWasAllADream
- Windows Privilege Escalation from User to Domain Admin.☆1,335Updated last year
- A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certifica…☆817Updated last year
- Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)☆1,015Updated 3 years ago
- An Office365 User Attack Tool☆624Updated 8 months ago
- Exploit allowing you to read registry hives as non-admin on Windows 10 and 11☆716Updated 3 years ago
- Some notes and examples for cobalt strike's functionality☆988Updated 2 years ago
- ☆1,528Updated 5 months ago
- A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. T…☆939Updated 3 years ago
- Powershell reverse shell using HTTP/S protocol with AMSI bypass and Proxy Aware☆595Updated 2 months ago
- An script to perform kerberos bruteforcing by using impacket☆434Updated 2 years ago
- PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.☆1,844Updated 3 months ago
- Custom Query list for the Bloodhound GUI based off my cheatsheet☆750Updated last year
- Exploit Code for CVE-2020-1472 aka Zerologon☆383Updated 4 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆985Updated 2 years ago
- Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling☆979Updated 3 months ago
- Get file less command execution for lateral movement.☆603Updated 2 years ago
- A (partial) Python rewriting of PowerSploit's PowerView☆921Updated this week
- An introduction to Active Directory security☆639Updated 2 years ago
- KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…☆1,534Updated 2 years ago
- A list of useful Powershell scripts with 100% AV bypass (At the time of publication).☆1,002Updated 2 years ago
- Information released publicly by NCC Group's Full Spectrum Attack Simulation (FSAS) team.☆606Updated 2 years ago
- Some usefull Scripts and Executables for Pentest & Forensics☆1,092Updated last month
- BloodyAD is an Active Directory Privilege Escalation Framework☆1,254Updated 2 weeks ago
- Active Directory Integrated DNS dumping by any authenticated user☆933Updated 11 months ago
- Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands☆978Updated 3 years ago
- Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!☆1,022Updated 4 months ago
- ☆617Updated last year
- Collection of tools that reflect the network dimension into Bloodhound's data☆440Updated 2 years ago
- Overlord - Red Teaming Infrastructure Automation☆613Updated 5 months ago