cyberark / shimitLinks
A tool that implements the Golden SAML attack
☆336Updated 6 years ago
Alternatives and similar repositories for shimit
Users that are interested in shimit are comparing it to the libraries listed below
Sorting:
- Bloodhound Attack Path Automation in CobaltStrike☆318Updated 5 years ago
- LyncSniper: A tool for penetration testing Skype for Business and Lync deployments☆306Updated 4 years ago
- ☆390Updated last week
- ☆283Updated 7 years ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆635Updated 8 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆380Updated 5 years ago
- ☆523Updated 2 years ago
- ☆272Updated 2 years ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆308Updated 2 years ago
- ☆307Updated 6 years ago
- Rapid Attack Infrastructure (RAI)☆305Updated 7 months ago
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆449Updated 3 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆185Updated 5 years ago
- Domain user enumeration tool☆215Updated last year
- Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)☆67Updated 3 years ago
- Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.☆366Updated 10 months ago
- This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.☆384Updated last year
- Weaponizing Splunk with reverse and bind shells.☆182Updated 8 years ago
- locate and attack Lync/Skype for Business☆338Updated 8 months ago
- Sheepl : Creating realistic user behaviour for supporting tradecraft development within lab environments☆396Updated last year
- A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.☆320Updated 8 years ago
- Disposable and resilient red team infrastructure with Terraform☆268Updated 6 years ago
- An LDAP based Active Directory user and group enumeration tool☆308Updated 2 years ago
- Malicious WMI Events using PowerShell☆387Updated 8 years ago
- A framework for stealthy domain reconnaissance☆303Updated 3 years ago
- Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.☆204Updated 6 years ago
- Red Team C2 Infrastructure built in AWS using Ansible!☆229Updated 4 years ago
- Detect and abuse risky SPNs☆262Updated 8 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆395Updated 5 years ago
- goddi (go dump domain info) dumps Active Directory domain information☆429Updated 3 years ago