g0h4n / RustHound-CE
Active Directory data ingestor for BloodHound Community Edition written in Rust. π¦
β175Updated 3 weeks ago
Alternatives and similar repositories for RustHound-CE:
Users that are interested in RustHound-CE are comparing it to the libraries listed below
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.β170Updated last month
- A Rust implementation of Internal-Monologue β retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and β¦β159Updated 3 months ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).β287Updated 4 months ago
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without β¦β188Updated 5 months ago
- FindGPPPasswords, A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privilegedβ¦β130Updated last month
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitationβ277Updated 4 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinelβ200Updated 3 months ago
- psexecsvc - a python implementation of PSExec's native service implementationβ183Updated last month
- Generate and Manage KeyCredentialLinksβ147Updated last week
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.β202Updated 3 months ago
- Tool for Active Directory Certificate Services enumeration and abuseβ120Updated 2 months ago
- Continuous password spraying toolβ174Updated 3 weeks ago
- β207Updated 5 months ago
- Retrieve and display information about active user sessions on remote computers. No admin privileges required.β180Updated 7 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the cloneβ¦β192Updated 5 months ago
- Leak of any user's NetNTLM hash. Fixed in KB5040434β250Updated 7 months ago
- Make everyone in your VLAN ASRep roastableβ185Updated last month
- Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the wβ¦β123Updated last year
- Find potential DLL Sideloads on your windows computerβ176Updated 2 months ago
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop appsβ137Updated 8 months ago
- Automatically run and populate a new instance of BH CEβ70Updated 2 weeks ago
- β190Updated 6 months ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoningβ110Updated 11 months ago
- Slides and Codes used for the workshop Red Team Infrastructure Automationβ180Updated 11 months ago
- PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirectorβ¦β332Updated 3 months ago
- Active Directory Authentication Libraryβ60Updated last week
- β171Updated 4 months ago
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movementβ160Updated 3 months ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)β180Updated 5 months ago
- A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.β144Updated 10 months ago