dafthack / HostReconLinks
This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance phase. It gathers information about the local system, users, and domain information. It does not use any 'net', 'ipconfig', 'whoami', 'netstat', or other system commands to help avoid detection.
☆465Updated 8 years ago
Alternatives and similar repositories for HostRecon
Users that are interested in HostRecon are comparing it to the libraries listed below
Sorting:
- Malicious WMI Events using PowerShell☆398Updated 9 years ago
- Egress-Assess is a tool used to test egress data detection capabilities☆692Updated 2 years ago
- PowerShell Remote Download Cradle Generator & Obfuscator☆852Updated 7 years ago
- PowerMeta searches for publicly available files hosted on various websites for a particular domain by using specially crafted Google, and…☆568Updated 6 months ago
- Search for categorized domain☆451Updated 7 years ago
- Domain Password Audit Tool for Pentesters☆1,016Updated 3 weeks ago
- GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.☆633Updated 8 years ago
- Credential and Red Teaming Defense for Windows Environments☆330Updated last year
- A Powershell Privilege Escalation Enumeration Script.☆316Updated 7 years ago
- The Old BloodHound C# Ingestor (Deprecated)☆511Updated 3 years ago
- Automate creating resilient, disposable, secure and agile infrastructure for Red Teams☆385Updated 5 years ago
- A Burp Suite Extension to pull Employee Names from Google and Bing LinkedIn Search Results☆205Updated last year
- ☆525Updated 3 years ago
- Chameleon: A tool for evading Proxy categorisation☆512Updated last year
- Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.☆365Updated last year
- An LDAP based Active Directory user and group enumeration tool☆306Updated 2 years ago
- Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)☆68Updated 4 years ago
- ☆397Updated last week
- ☆283Updated 8 years ago
- NetSPI PowerShell Scripts☆340Updated 11 months ago
- Responder Windows Version Beta☆554Updated last year
- Active Directory forensic framework☆328Updated 3 years ago
- Rid_enum is a null session RID cycle attack for brute forcing domain controllers.☆304Updated last year
- A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…☆449Updated 3 years ago
- Rapid Attack Infrastructure (RAI)☆309Updated last year
- Search for potential frontable domains☆644Updated 2 years ago
- Miscellaneous tools for BloodHound☆403Updated last year
- Weaponizing Splunk with reverse and bind shells.☆182Updated 8 years ago
- Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.☆492Updated 6 years ago
- Sheepl : Creating realistic user behaviour for supporting tradecraft development within lab environments☆401Updated last year