enjoiz / Privesc

Related projects ⓘ

Alternatives and complementary repositories for Privesc

• fox-it / aclpwn.py
  Active Directory ACL exploitation with BloodHound
  ☆703Updated 3 years ago
• gdedrouas / Exchange-AD-Privesc
  Exchange privilege escalations to Active Directory
  ☆728Updated last year
• evilmog / ntlmv1-multi
  NTLMv1 Multitool
  ☆590Updated last month
• G0ldenGunSec / SharpSecDump
  .Net port of the remote SAM + LSA Secrets dumping functionality of impacket's secretsdump.py
  ☆593Updated last year
• fox-it / Invoke-ACLPwn
  ☆513Updated 2 years ago
• the-useless-one / pywerview
  A (partial) Python rewriting of PowerSploit's PowerView
  ☆919Updated this week
• danielbohannon / Invoke-CradleCrafter
  PowerShell Remote Download Cradle Generator & Obfuscator
  ☆822Updated 6 years ago
• Sw4mpf0x / PowerLurk
  Malicious WMI Events using PowerShell
  ☆370Updated 8 years ago
• CBHue / PyFuscation
  Obfuscate powershell scripts by replacing Function names, Variables and Parameters.
  ☆511Updated last year
• eladshamir / Internal-Monologue
  Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS
  ☆1,401Updated 6 years ago
• lgandx / Responder-Windows
  Responder Windows Version Beta
  ☆502Updated 3 months ago
• CiscoCXSecurity / linikatz
  linikatz is a tool to attack AD on UNIX
  ☆527Updated last year
• dirkjanm / PrivExchange
  Exchange your privileges for Domain Admin privs by abusing Exchange
  ☆980Updated 4 years ago
• leoloobeek / LAPSToolkit
  Tool to audit and attack LAPS environments
  ☆817Updated 6 years ago
• Kevin-Robertson / Powermad
  PowerShell MachineAccountQuota and DNS exploit tools
  ☆1,238Updated last year
• leechristensen / SpoolSample
  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…
  ☆924Updated 5 months ago
• dafthack / HostRecon
  This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance…
  ☆434Updated 7 years ago
• rvrsh3ll / FindFrontableDomains
  Search for potential frontable domains
  ☆612Updated last year
• decoder-it / psgetsystem
  getsystem via parent process using ps1 & embeded c#
  ☆384Updated last year
• Kevin-Robertson / Invoke-TheHash
  PowerShell Pass The Hash Utils
  ☆1,480Updated 5 years ago
• FSecureLABS / SharpGPOAbuse
  SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GP…
  ☆1,069Updated 3 years ago
• OmerYa / Invisi-Shell
  Hide your Powershell script in plain sight. Bypass all Powershell security features
  ☆1,107Updated 5 years ago
• Flangvik / NetLoader
  Loads any C# binary in mem, patching AMSI + ETW.
  ☆800Updated 3 years ago
• Greenwolf / Spray
  A Password Spraying tool for Active Directory Credentials by Jacob Wilkin(Greenwolf)
  ☆723Updated 5 months ago
• NotMedic / NetNTLMtoSilverTicket
  SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket
  ☆767Updated 3 years ago
• outflanknl / Invoke-ADLabDeployer
  Automated deployment of Windows and Active Directory test lab networks. Useful for red and blue teams.
  ☆479Updated 5 years ago
• GhostPack / SharpUp
  SharpUp is a C# port of various PowerUp functionality.
  ☆1,264Updated 9 months ago
• ropnop / windapsearch
  Python script to enumerate users, groups and computers from a Windows domain through LDAP queries
  ☆800Updated 2 years ago
• dev-2null / ADCollector
  A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.
  ☆618Updated 2 years ago
• BloodHoundAD / SharpHound3
  C# Data Collector for the BloodHound Project, Version 3
  ☆520Updated 2 years ago