dru1d-foofus / CertipyLinks
Tool for Active Directory Certificate Services enumeration and abuse
☆13Updated last year
Alternatives and similar repositories for Certipy
Users that are interested in Certipy are comparing it to the libraries listed below
Sorting:
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆332Updated 10 months ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆294Updated 2 years ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆327Updated 11 months ago
- Tool for Active Directory Certificate Services enumeration and abuse☆164Updated 5 months ago
- Use ESC1 to perform a makeshift DCSync and dump hashes☆209Updated last year
- Attempt at Obfuscated version of SharpCollection☆222Updated last month
- Impacket is a collection of Python classes for working with network protocols.☆75Updated last year
- psexecsvc - a python implementation of PSExec's native service implementation☆217Updated 8 months ago
- ☆231Updated last year
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆314Updated 2 weeks ago
- A marriage between Octoberfest7/OSEP-Tools and chvancooten/OSEP-Code-Snippets with some improvements/additions☆79Updated 9 months ago
- Execute commands interactively on remote Windows machines using the WinRM protocol☆244Updated this week
- A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …☆208Updated 3 months ago
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.☆340Updated 2 weeks ago
- A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…☆16Updated last year
- Cobalt Strike BOF for evasive .NET assembly execution☆276Updated 6 months ago
- Leak of any user's NetNTLM hash. Fixed in KB5040434☆258Updated last year
- ☆227Updated last year
- wspcoerce coerces a Windows computer account via SMB to an arbitrary target using MS-WSP☆113Updated 3 months ago
- Local privilege escalation from SeImpersonatePrivilege using EfsRpc.☆328Updated 2 years ago
- Offensive MSSQL toolkit written in Python, based off SQLRecon☆201Updated 9 months ago
- Impack-only implementation of WinRM protocol with support for NTLM and Kerberos auth☆39Updated 2 months ago
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆217Updated last year
- AD ACL abuse☆346Updated last month
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆248Updated 7 months ago
- Impacket is a collection of Python classes for working with network protocols.☆294Updated 2 months ago
- ☆213Updated last year
- Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking☆357Updated 3 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆208Updated 11 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆267Updated 3 months ago