cogiceo / GPOHoundLinks
Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data
β275Updated last month
Alternatives and similar repositories for GPOHound
Users that are interested in GPOHound are comparing it to the libraries listed below
Sorting:
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.β224Updated 3 months ago
- Active Directory data ingestor for BloodHound Community Edition written in Rust. π¦β197Updated 3 months ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).β306Updated 6 months ago
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordonβs (@YuG0rd) BadSuccessor attack from Akamai.β303Updated last week
- A BloodHound collector for Microsoft Configuration Managerβ323Updated 5 months ago
- A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accountsβ153Updated last month
- β162Updated 2 weeks ago
- Tool for Active Directory Certificate Services enumeration and abuseβ161Updated last month
- Weaponizing DCOM for NTLM Authentication Coercionsβ223Updated last month
- Continuous password spraying toolβ186Updated 3 months ago
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.β211Updated 2 weeks ago
- Generate and Manage KeyCredentialLinksβ158Updated last month
- A Rust implementation of Internal-Monologue β retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and β¦β162Updated last month
- β219Updated 7 months ago
- Find potential DLL Sideloads on your windows computerβ206Updated 4 months ago
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without β¦β209Updated 8 months ago
- psexecsvc - a python implementation of PSExec's native service implementationβ200Updated 3 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinelβ231Updated 2 weeks ago
- β176Updated last week
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)β188Updated 8 months ago
- Make everyone in your VLAN ASRep roastableβ192Updated 3 months ago
- Python implementation of GhostPack's Seatbelt situational awareness toolβ257Updated 6 months ago
- Impacket is a collection of Python classes for working with network protocols.β283Updated 4 months ago
- β191Updated 8 months ago
- β151Updated 2 months ago
- Leak of any user's NetNTLM hash. Fixed in KB5040434β254Updated 9 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movementβ170Updated 2 weeks ago
- Azure Post Exploitation Frameworkβ199Updated 3 months ago
- Retrieve and display information about active user sessions on remote computers. No admin privileges required.β186Updated 9 months ago
- Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.β180Updated last month