django-88 / NomadScannerLinks
☆163Updated 2 months ago
Alternatives and similar repositories for NomadScanner
Users that are interested in NomadScanner are comparing it to the libraries listed below
Sorting:
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …☆145Updated 3 weeks ago
- A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …☆213Updated 2 weeks ago
- Python alternative to Mimikatz lsadump::dcshadow☆155Updated 7 months ago
- Generate and Manage KeyCredentialLinks☆180Updated 3 months ago
- Our Tips&Tricks☆128Updated 11 months ago
- Enumerate Domain Users Without Authentication☆281Updated 9 months ago
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆208Updated 4 months ago
- Group Policy Objects manipulation and exploitation framework☆286Updated last month
- APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files☆97Updated 9 months ago
- The different ways to dump lsass☆206Updated 5 months ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆165Updated 5 months ago
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆270Updated 2 weeks ago
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆250Updated last month
- Enumerate active EDR's on the system☆148Updated 4 months ago
- PoC that downloads an executable from a public SSL certificate☆135Updated 6 months ago
- PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph☆283Updated last week
- Founding is a generator that will create a loader encrypted or obfuscated with different execution types☆111Updated 5 months ago
- A powerful, modular, lightweight and efficient command & control framework written in Nim.☆215Updated 2 months ago
- SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆158Updated this week
- Slides and Codes used for the workshop Red Team Infrastructure Automation☆196Updated last year
- ☆152Updated 3 months ago
- Go collector for adding Ansible WorX and Ansible Tower attack paths to BloodHound with OpenGraph☆64Updated this week
- Continuous password spraying tool☆198Updated last month
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆161Updated 3 months ago
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆165Updated 5 months ago
- ☆157Updated 8 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆180Updated 8 months ago
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆188Updated 9 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆149Updated last year
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆86Updated 10 months ago