cyberark / shimit
A tool that implements the Golden SAML attack
☆334Updated 6 years ago
Alternatives and similar repositories for shimit:
Users that are interested in shimit are comparing it to the libraries listed below
- Bloodhound Attack Path Automation in CobaltStrike☆312Updated 4 years ago
- Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.☆364Updated 7 months ago
- LyncSniper: A tool for penetration testing Skype for Business and Lync deployments☆305Updated 4 years ago
- Weaponizing Splunk with reverse and bind shells.☆176Updated 7 years ago
- ☆516Updated 2 years ago
- Disposable and resilient red team infrastructure with Terraform☆262Updated 6 years ago
- ☆378Updated last week
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆448Updated 2 years ago
- An LDAP based Active Directory user and group enumeration tool☆308Updated 2 years ago
- Check for valid credentials across a network over SMB☆259Updated last year
- Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)☆65Updated 3 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆376Updated 5 years ago
- ☆281Updated 7 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆632Updated 7 years ago
- ☆272Updated 2 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆393Updated 4 years ago
- Search for categorized domain☆443Updated 6 years ago
- A framework for stealthy domain reconnaissance☆299Updated 3 years ago
- Automate creating resilient, disposable, secure and agile infrastructure for Red Teams☆378Updated 5 years ago
- ☆307Updated 6 years ago
- Domain user enumeration tool☆215Updated last year
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆319Updated 7 years ago
- locate and attack Lync/Skype for Business☆335Updated 5 months ago
- Tool to extract Kerberos tickets from Linux kernel keys.☆219Updated 5 years ago
- A Burp Suite Extension to pull Employee Names from Google and Bing LinkedIn Search Results☆192Updated 8 months ago
- Malicious WMI Events using PowerShell☆378Updated 8 years ago
- Various Cheat Sheets☆181Updated 3 years ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆303Updated 2 years ago
- A Powershell client for dnscat2, an encrypted DNS command and control tool.☆403Updated last year
- Chameleon: A tool for evading Proxy categorisation☆479Updated 3 months ago