cfalta / PoshADCSLinks
A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)
☆190Updated 4 years ago
Alternatives and similar repositories for PoshADCS
Users that are interested in PoshADCS are comparing it to the libraries listed below
Sorting:
- AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Co…☆225Updated 4 years ago
- Collection of cyphers for bloodhound☆151Updated last year
- A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.☆167Updated 3 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆259Updated 3 years ago
- RACE is a PowerShell module for executing ACL attacks against Windows targets.☆231Updated 2 years ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆218Updated 4 years ago
- Enumerate Domain Data☆330Updated last year
- Run Rubeus via Rundll32☆202Updated 5 years ago
- ☆393Updated 4 years ago
- Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.☆147Updated 4 years ago
- Python based BloodHound data importer☆146Updated 2 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆234Updated 3 years ago
- A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object☆239Updated 5 years ago
- ☆163Updated 2 years ago
- ☆359Updated last year
- ☆401Updated 2 months ago
- Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…☆243Updated 4 years ago
- Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type☆209Updated last year
- SpecterOps Presentations☆205Updated last month
- ADCS abuser☆297Updated 2 years ago
- Remotely enables Restricted Admin Mode☆211Updated 3 years ago
- DAFT: Database Audit Framework & Toolkit☆179Updated 3 years ago
- POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln☆191Updated 3 years ago
- GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects☆248Updated 4 years ago
- GolenGMSA tool for working with GMSA passwords☆161Updated last month
- Material for the "Hands-On BloodHound" Workshop☆109Updated 4 years ago
- ☆154Updated 5 months ago
- Enumerate all network shares in the current domain. Also, can resolve names to IP addresses.☆299Updated 5 years ago
- ☆249Updated last year
- Proof-of-concept tools for my AD Forest trust research☆220Updated last year