d3lb3 / KeePass-the-HashLinks
A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlock the database.
☆32Updated 2 years ago
Alternatives and similar repositories for KeePass-the-Hash
Users that are interested in KeePass-the-Hash are comparing it to the libraries listed below
Sorting:
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 3 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆56Updated 3 years ago
- Secretsdump C# version only supporting local (live) operation☆50Updated 4 months ago
- WhoAmI by asking the LDAP service on a domain controller.☆63Updated 3 years ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆60Updated 3 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆75Updated 2 years ago
- ☆48Updated 2 years ago
- ☆16Updated 3 years ago
- My BloodHound custom queries☆25Updated 2 years ago
- IOXIDResolver from AirBus Security/PingCastle☆51Updated 4 years ago
- ☆35Updated 5 months ago
- Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+☆33Updated last year
- A small Aggressor script to help Red Teams identify foreign processes on a host machine☆84Updated 2 years ago
- A C# Tool to find left over pentest data for use in your pentest or redteam op. Blue could maybe use to find files to cleanup☆39Updated last year
- Retrieve host information from NTLM☆31Updated 4 years ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆86Updated 2 years ago
- ☆31Updated 2 years ago
- Modified version of PEAS client for offensive operations☆41Updated 2 years ago
- Modified version of Pypykatz to print encrypted credentials☆52Updated 2 years ago
- ☆25Updated 3 years ago
- Unchain AMSI by patching the provider’s unmonitored memory space☆91Updated 2 years ago
- load dumped csharp binaries as assemblies and launch them in memory☆27Updated last year
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆33Updated last year
- ☆38Updated 3 years ago
- Federated Office365 user enumeration based on correlated response trend analysis☆51Updated 3 years ago
- Convert ldapdomaindump to Bloodhound☆80Updated last year
- .NET project for installing Persistence☆63Updated 3 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆42Updated 4 months ago
- Matryoshka loader is a tool that red team operators can leverage to generate shellcode for Microsoft Office document phishing payloads.☆39Updated 4 years ago
- A BOF port of the research of @thefLinkk and @codewhitesec☆98Updated 3 years ago