django-88 / NomadScannerLinks
☆163Updated 2 months ago
Alternatives and similar repositories for NomadScanner
Users that are interested in NomadScanner are comparing it to the libraries listed below
Sorting:
- A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …☆213Updated 3 weeks ago
- Our Tips&Tricks☆128Updated 11 months ago
- ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …☆149Updated last month
- Python alternative to Mimikatz lsadump::dcshadow☆157Updated 7 months ago
- APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files☆96Updated 10 months ago
- Group Policy Objects manipulation and exploitation framework☆289Updated 2 months ago
- Generate and Manage KeyCredentialLinks☆241Updated last week
- Founding is a generator that will create a loader encrypted or obfuscated with different execution types☆121Updated 5 months ago
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆208Updated 4 months ago
- Enumerate active EDR's on the system☆150Updated 4 months ago
- Enumerate Domain Users Without Authentication☆281Updated 9 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆181Updated 8 months ago
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆276Updated 3 weeks ago
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆260Updated last month
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆165Updated 6 months ago
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆150Updated last year
- ☆154Updated 4 months ago
- PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph☆290Updated 2 weeks ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆86Updated 11 months ago
- ☆120Updated 8 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆162Updated 3 months ago
- Go collector for adding Ansible WorX and Ansible Tower attack paths to BloodHound with OpenGraph☆68Updated this week
- Automating the MITM attack on WSUS☆297Updated last month
- Python based GUI for browsing LDAP☆179Updated 2 months ago
- peeko – Browser-based XSS C2 for stealthy internal network exploration via infected browser.☆222Updated 9 months ago
- PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…☆153Updated last year
- A powerful, modular, lightweight and efficient command & control framework written in Nim.☆216Updated 3 months ago
- PoC that downloads an executable from a public SSL certificate☆136Updated 6 months ago
- Active Directory Authentication Library☆90Updated 3 months ago
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆191Updated 9 months ago