cyberark / shimitLinks
A tool that implements the Golden SAML attack
☆337Updated 6 years ago
Alternatives and similar repositories for shimit
Users that are interested in shimit are comparing it to the libraries listed below
Sorting:
- Bloodhound Attack Path Automation in CobaltStrike☆319Updated 5 years ago
- ☆395Updated 2 months ago
- An LDAP based Active Directory user and group enumeration tool☆306Updated 2 years ago
- Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)☆67Updated 3 years ago
- LyncSniper: A tool for penetration testing Skype for Business and Lync deployments☆306Updated 5 years ago
- Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.☆366Updated last year
- A framework for stealthy domain reconnaissance☆302Updated 3 years ago
- ☆282Updated 7 years ago
- Weaponizing Splunk with reverse and bind shells.☆181Updated 8 years ago
- Domain user enumeration tool☆215Updated last year
- Disposable and resilient red team infrastructure with Terraform☆274Updated 6 years ago
- Automate creating resilient, disposable, secure and agile infrastructure for Red Teams☆382Updated 5 years ago
- Rapid Attack Infrastructure (RAI)☆306Updated 9 months ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆186Updated 5 years ago
- ☆172Updated 7 years ago
- Red Team C2 Infrastructure built in AWS using Ansible!☆230Updated 4 years ago
- ☆237Updated 4 years ago
- ☆333Updated 2 years ago
- Sheepl : Creating realistic user behaviour for supporting tradecraft development within lab environments☆398Updated last year
- A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities☆204Updated 4 years ago
- locate and attack Lync/Skype for Business☆343Updated 11 months ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆635Updated 8 years ago
- This is a weaponized WSUS exploit☆289Updated 2 years ago
- Search for categorized domain☆447Updated 6 years ago
- Simple C# for checking for the existence of credential files related to AWS, Microsoft Azure, and Google Compute.☆174Updated 6 years ago
- Detect and abuse risky SPNs☆261Updated 8 years ago
- Pypykatz server☆125Updated 6 years ago
- A curated list of awesome BloodhoundAD resources☆235Updated 2 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆380Updated 6 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆397Updated 5 years ago