dirkjanm / forest-trust-toolsLinks
Proof-of-concept tools for my AD Forest trust research
☆225Updated last year
Alternatives and similar repositories for forest-trust-tools
Users that are interested in forest-trust-tools are comparing it to the libraries listed below
Sorting:
- Python implementation for PetitPotam☆214Updated 4 years ago
- MS-FSRVP coercion abuse PoC☆300Updated 3 years ago
- Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527)☆199Updated 4 years ago
- C# version of Powermad☆168Updated last year
- Pass the Hash to a named pipe for token Impersonation☆306Updated last year
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆86Updated 3 years ago
- Powershell version of SharpGPOAbuse☆87Updated 4 years ago
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆278Updated 4 years ago
- C# Lsass parser☆297Updated 4 years ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆294Updated 2 years ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆300Updated 3 years ago
- ☆156Updated 8 months ago
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆131Updated 2 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆258Updated 2 years ago
- Agressor script that lists available Cobalt Strike beacon commands and colors them based on their type☆210Updated last year
- ADCS cert template modification and ACL enumeration☆143Updated 2 years ago
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆233Updated 3 years ago
- Amplify network visibility from multiple POV of other hosts☆305Updated last year
- Recovering NTLM hashes from Credential Guard☆349Updated 2 years ago
- ☆250Updated 2 years ago
- Another LSASS dumping tool that uses a dynamically compiled LSA plugin to grab an lsass handle and API hooking for capturing the dump in…☆267Updated 4 years ago
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆242Updated 3 years ago
- Buggy script to play with GPOs☆116Updated 9 months ago
- A Red Team tool for remotely manipulating Group Policy Object(GPO), Organizational Unit(OU), GPLink and Security Filtering☆116Updated 4 years ago
- Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)☆277Updated 3 years ago
- Perform DCSync operation without mimikatz☆148Updated 11 months ago
- ☆468Updated 2 years ago
- OPSEC safe Kerberoasting in C#☆192Updated 3 years ago
- Dumping SAM / SECURITY / SYSTEM registry hives with a Beacon Object File☆211Updated 5 years ago
- DCSync Attack from Outside using Impacket☆115Updated 3 years ago