doredry / TokenFinder
Tool to extract powerful tokens from Office desktop apps memory
☆71Updated last year
Alternatives and similar repositories for TokenFinder:
Users that are interested in TokenFinder are comparing it to the libraries listed below
- ☆100Updated 2 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆93Updated last year
- ☆85Updated last week
- ☆178Updated 3 months ago
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆87Updated last year
- ☆76Updated 11 months ago
- ☆104Updated 3 years ago
- So, you think you have MFA? AAD/ROPC/MFA bypass testing tool☆106Updated 2 years ago
- SMBMap is a handy SMB enumeration tool - here with Kerberos support☆73Updated 3 years ago
- ☆46Updated last year
- ☆83Updated 2 years ago
- Collection of tools to use with Azure Applications☆111Updated last year
- Simple PoC from Malicious Payload Injection from Windows Event Log Entry☆27Updated 2 years ago
- 🌩️ Collection of BloodHound queries for Azure☆60Updated 2 months ago
- ☆139Updated 7 months ago
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆92Updated last year
- Hybrid AD utilities for ROADtools☆72Updated last month
- PowerHunt is a modular threat hunting framework written in PowerShell that leverages PowerShell Remoting for data collection on scale.☆65Updated 3 months ago
- AAD related enumeration in Nim☆129Updated last year
- Living off the land searches for explorer and sharepoint☆57Updated 4 months ago
- A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if …☆87Updated 9 months ago
- A small script that automates Entra ID persistence with Windows Hello For Business key☆55Updated last month
- Repo containing various intel-based resources such as threat research, adversary emulation/simulation plan and so on☆81Updated 10 months ago
- Default Detections for EDR☆96Updated last year
- ☆43Updated 8 months ago
- A tool to create randomly insecure file shares that also contain unsecured credential files☆36Updated 10 months ago
- ☆33Updated 4 months ago
- Living Off the Foreign Land setup scripts☆65Updated 3 weeks ago
- Some scripts to support with importing large datasets into BloodHound☆79Updated last year
- PowerShell scripts to create sandboxed or vulnerable environments using HyperV and AutomatedLab☆76Updated last month