certat / exchange-scans
A collection of functions to check Microsoft Exchange Servers for ProxyLogon and ProxyShell
☆11Updated 3 years ago
Alternatives and similar repositories for exchange-scans:
Users that are interested in exchange-scans are comparing it to the libraries listed below
- CIS Benchmark testing of Windows SIEM configuration☆44Updated last year
- Analyzing AD domains for security risks related to user accounts☆63Updated 2 years ago
- Searching .evtx logs for remote connections☆23Updated last year
- passat - password auditing tool. Does statistical analyses on large sets of cracked passwords.☆24Updated 3 years ago
- Cisco CallManager User Enumeration☆15Updated 2 years ago
- Offensive tool for guessing Active Directory credentials via Kerberos☆9Updated last year
- A Python script to find tenant id an region from a list of domain names.☆13Updated last month
- Script for importing Nmap results into a Neo4j Graph Database☆20Updated 2 years ago
- OMIGOD! OM I GOOD? A free scanner to detect VMs vulnerable to one of the "OMIGOD" vulnerabilities discovered by Wiz's threat research tea…☆18Updated 3 years ago
- GrizzlyTunnel is a automation script designed to create seamless Layer 3 VPN like tunnels over SSH.☆23Updated 2 months ago
- Extract credentials from lsass remotely☆16Updated 5 years ago
- Python tool to find vulnerable AD object and generating csv report☆26Updated 2 years ago
- EnumVolcano is an open source Bash script which is used to perform automated enumeration for privilege escalation. This tool is dedicated…☆24Updated 2 years ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆17Updated 2 years ago
- AutoPoC Generator HoneyPoC☆35Updated 7 months ago
- A tool to analyze Ntds.dit files once the NTLM and LM hashes have been cracked.☆14Updated 3 years ago
- Deathstar is an Empire plugin that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common …☆16Updated this week
- This is a proof-of-concept of malicious software running inside of ModSecurity WAF.☆32Updated 2 years ago
- Abusing Remote Windows SMB Shares for Fun and Pen Testing☆14Updated last year
- Parses Nessus .nessus files for exploitable vulnerabilities and outputs a report file in format MM-DD-YYYY-nessus.csv☆39Updated last year
- A port scanner written purely in PowerShell.☆77Updated last year
- ☆24Updated 3 years ago
- Red Teaming & Active Directory Cheat Sheet.☆40Updated last year
- IVRE's fork of the famous TCP port scanner. See below for details.☆41Updated last month
- A command-line utility for auditing DNS configuration using Zonemaster API☆30Updated last year
- Original PoC for CVE-2023-30367☆14Updated last year
- Slides from my talk at the Adversary Village, Defcon 30☆29Updated 2 years ago
- CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"☆47Updated 3 years ago
- Tool to perform lateral movement between AAD joined devices☆55Updated 2 years ago
- ☆44Updated this week