django-88 / NomadScannerLinks
☆164Updated last month
Alternatives and similar repositories for NomadScanner
Users that are interested in NomadScanner are comparing it to the libraries listed below
Sorting:
- Python alternative to Mimikatz lsadump::dcshadow☆155Updated 6 months ago
- A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …☆211Updated 6 months ago
- Generate and Manage KeyCredentialLinks☆180Updated 2 months ago
- PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph☆274Updated 2 weeks ago
- Enumerate Domain Users Without Authentication☆280Updated 8 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆181Updated 7 months ago
- Our Tips&Tricks☆128Updated 10 months ago
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆165Updated 5 months ago
- Group Policy Objects manipulation and exploitation framework☆283Updated 3 weeks ago
- Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…☆208Updated 3 months ago
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆245Updated 2 weeks ago
- A powerful, modular, lightweight and efficient command & control framework written in Nim.☆214Updated 2 months ago
- APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files☆95Updated 9 months ago
- Founding is a generator that will create a loader encrypted or obfuscated with different execution types☆107Updated 4 months ago
- Tool to enumerate privileged Scheduled Tasks on Remote Systems☆246Updated this week
- ☆155Updated 8 months ago
- Enumerate active EDR's on the system☆147Updated 3 months ago
- Python based GUI for browsing LDAP☆175Updated 3 weeks ago
- Slides and Codes used for the workshop Red Team Infrastructure Automation☆196Updated last year
- PoC that downloads an executable from a public SSL certificate☆135Updated 5 months ago
- Python implementation of GhostPack's Seatbelt situational awareness tool☆269Updated last year
- PoC for using MS Windows printers for persistence / command and control via Internet Printing☆149Updated last year
- ☆152Updated 3 months ago
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆187Updated 8 months ago
- Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.☆86Updated 10 months ago
- Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.☆263Updated 8 months ago
- SilentButDeadly is a network communication blocker specifically designed to neutralize EDR/AV software by preventing their cloud connecti…☆414Updated 2 months ago
- Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.☆164Updated 5 months ago
- The different ways to dump lsass☆203Updated 4 months ago
- Advanced Domain Controller attack and credential analysis tool leveraging DonPAPI database☆257Updated 2 months ago