csababarta / ntdsxtractLinks
Active Directory forensic framework
☆326Updated 3 years ago
Alternatives and similar repositories for ntdsxtract
Users that are interested in ntdsxtract are comparing it to the libraries listed below
Sorting:
- This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.☆384Updated 11 months ago
- ☆395Updated 4 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆635Updated 8 years ago
- Tater is a PowerShell implementation of the Hot Potato Windows Privilege Escalation exploit from @breenmachine and @foxglovesec☆451Updated 9 years ago
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆449Updated 3 years ago
- This version of PowerUp is now unsupported. See https://github.com/Veil-Framework/PowerTools/tree/master/PowerUp for the most current ver…☆244Updated 8 years ago
- ObfuscatedEmpire is a fork of Empire with Invoke-Obfuscation integrated directly into it's functionality.☆227Updated 7 years ago
- Inject PowerShell into any process☆233Updated 6 years ago
- This is a PowerShell based tool that is designed to act like a RAT. Its interface is that of a shell where any command that is supported …☆815Updated 11 months ago
- Some PowerShell Stuff☆281Updated 3 years ago
- ☆283Updated 7 years ago
- An LDAP based Active Directory user and group enumeration tool☆308Updated 2 years ago
- This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance…☆451Updated 7 years ago
- Weaponizing Splunk with reverse and bind shells.☆182Updated 8 years ago
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆320Updated 8 years ago
- ☆257Updated 2 years ago
- Detect and abuse risky SPNs☆262Updated 8 years ago
- Malicious WMI Events using PowerShell☆387Updated 8 years ago
- PowerShell Remote Download Cradle Generator & Obfuscator☆840Updated 7 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆380Updated 5 years ago
- A Powershell client for dnscat2, an encrypted DNS command and control tool.☆412Updated last year
- A PowerShell script to interact with the MITRE ATT&CK Framework via its own API☆368Updated 6 years ago
- Bloodhound Attack Path Automation in CobaltStrike☆318Updated 5 years ago
- The Old BloodHound C# Ingestor (Deprecated)☆511Updated 3 years ago
- Netview enumerates systems using WinAPI calls☆295Updated 3 years ago
- PSAmsi is a tool for auditing and defeating AMSI signatures.☆390Updated 7 years ago
- Executes PowerShell from an unmanaged process☆491Updated 9 years ago
- Rid_enum is a null session RID cycle attack for brute forcing domain controllers.☆282Updated 10 months ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆308Updated 2 years ago
- Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.☆366Updated 10 months ago