fox-it / Invoke-ACLPwn

Related projects ⓘ

Alternatives and complementary repositories for Invoke-ACLPwn

• gdedrouas / Exchange-AD-Privesc
  Exchange privilege escalations to Active Directory
  ☆728Updated last year
• dirkjanm / PrivExchange
  Exchange your privileges for Domain Admin privs by abusing Exchange
  ☆981Updated 4 years ago
• fox-it / aclpwn.py
  Active Directory ACL exploitation with BloodHound
  ☆703Updated 3 years ago
• Sw4mpf0x / PowerLurk
  Malicious WMI Events using PowerShell
  ☆371Updated 8 years ago
• HarmJ0y / DAMP
  The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification
  ☆373Updated 5 years ago
• evilmog / ntlmv1-multi
  NTLMv1 Multitool
  ☆590Updated last month
• Und3rf10w / Aggressor-scripts
  Aggressor scripts I've made for Cobalt Strike
  ☆404Updated last year
• fullmetalcache / PowerLine
  ☆305Updated 5 years ago
• HarmJ0y / ASREPRoast
  Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.
  ☆197Updated 6 years ago
• danielbohannon / Invoke-CradleCrafter
  PowerShell Remote Download Cradle Generator & Obfuscator
  ☆822Updated 6 years ago
• cyberark / RiskySPN
  Detect and abuse risky SPNs
  ☆259Updated 7 years ago
• decoder-it / psgetsystem
  getsystem via parent process using ps1 & embeded c#
  ☆384Updated last year
• cobbr / PSAmsi
  PSAmsi is a tool for auditing and defeating AMSI signatures.
  ☆386Updated 6 years ago
• NotMedic / NetNTLMtoSilverTicket
  SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket
  ☆767Updated 3 years ago
• HarmJ0y / PowerUp
  This version of PowerUp is now unsupported. See https://github.com/Veil-Framework/PowerTools/tree/master/PowerUp for the most current ver…
  ☆239Updated 7 years ago
• CBHue / PyFuscation
  Obfuscate powershell scripts by replacing Function names, Variables and Parameters.
  ☆511Updated last year
• outflanknl / Spray-AD
  A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.
  ☆425Updated 2 years ago
• vletoux / MakeMeEnterpriseAdmin
  ☆255Updated 2 years ago
• leechristensen / SpoolSample
  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…
  ☆925Updated 5 months ago
• outflanknl / Recon-AD
  Recon-AD, an AD recon tool based on ADSI and reflective DLL’s
  ☆316Updated 5 years ago
• GhostPack / SharpRoast
  DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.
  ☆253Updated 6 years ago
• bluscreenofjeff / Malleable-C2-Randomizer
  A script to randomize Cobalt Strike Malleable C2 profiles and reduce the chances of flagging signature-based detection controls
  ☆433Updated 2 years ago
• CiscoCXSecurity / linikatz
  linikatz is a tool to attack AD on UNIX
  ☆527Updated last year
• skelsec / msldap
  LDAP library for auditing MS AD
  ☆366Updated 2 months ago
• obscuritylabs / RAI
  Rapid Attack Infrastructure (RAI)
  ☆297Updated 3 years ago
• CroweCybersecurity / ad-ldap-enum
  An LDAP based Active Directory user and group enumeration tool
  ☆303Updated last year
• bluscreenofjeff / AggressorScripts
  Aggressor scripts for use with Cobalt Strike 3.0+
  ☆795Updated 2 years ago
• dafthack / HostRecon
  This function runs a number of checks on a system to help provide situational awareness to a penetration tester during the reconnaissance…
  ☆434Updated 7 years ago
• the-useless-one / pywerview
  A (partial) Python rewriting of PowerSploit's PowerView
  ☆921Updated this week