garrettfoster13 / aced
☆150Updated 9 months ago
Related projects ⓘ
Alternatives and complementary repositories for aced
- ☆143Updated last year
- Determine if the WebClient Service (WebDAV) is running on a remote system☆121Updated 8 months ago
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆119Updated 3 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆250Updated last year
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆166Updated last year
- ADCS cert template modification and ACL enumeration☆129Updated last year
- Beacon Object File & C# project to check LDAP signing☆170Updated 3 months ago
- ☆112Updated last year
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆126Updated last week
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆297Updated 8 months ago
- ☆181Updated 7 months ago
- A Python POC for CRED1 over SOCKS5☆130Updated last month
- OPSEC safe Kerberoasting in C#☆188Updated 2 years ago
- ☆241Updated last year
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆108Updated 4 years ago
- Timeroasting scripts by Tom Tervoort☆182Updated last year
- Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…☆96Updated 2 years ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆156Updated last year
- Hybrid AD utilities for ROADtools☆61Updated 2 weeks ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆222Updated last year
- ☆33Updated 3 weeks ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆46Updated 5 months ago
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆153Updated last week
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆252Updated 3 years ago
- GolenGMSA tool for working with GMSA passwords☆135Updated 6 months ago
- Some scripts to support with importing large datasets into BloodHound☆76Updated 11 months ago
- Custom Queries - Brought Up to BH4.1 syntax☆228Updated last week
- Disconnected GPO Editor - A Group Policy Manager launcher to allow editing of domain GPOs from non-domain joined machines☆144Updated 2 months ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆95Updated last year