h4wkst3r / ADOKit

Related projects ⓘ

Alternatives and complementary repositories for ADOKit

• Malcrove / SeamlessPass
  A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO
  ☆129Updated 2 months ago
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆58Updated last year
• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆63Updated last week
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆147Updated 3 weeks ago
• daddycocoaman / azbelt
  AAD related enumeration in Nim
  ☆128Updated last year
• CCob / Shwmae
  ☆129Updated last month
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆119Updated 3 years ago
• JoelGMSec / AzureGraph
  Azure AD enumeration over MS Graph
  ☆80Updated last year
• mlcsec / Graphpython
  Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
  ☆133Updated 3 months ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆113Updated 6 months ago
• powerseb / PowerExtract
  ☆112Updated last year
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆133Updated 3 months ago
• t94j0 / adexplorersnapshot-rs
  ☆66Updated 3 months ago
• absolomb / FindMeAccess
  ☆62Updated 7 months ago
• FuzzySecurity / SANS-HackFest-2023
  ☆47Updated last year
• HackmichNet / AzTokenFinder
  ☆104Updated last year
• LuemmelSec / Custom-BloodHound-Queries
  ☆173Updated 9 months ago
• Tanguy-Boisset / bloodhound-automation
  Automatically run and populate a new instance of BH CE
  ☆54Updated last month
• AssuranceMaladieSec / AD-description-password-finder
  Retrieve AD accounts description and search for password in it
  ☆83Updated 2 years ago
• nettitude / MalSCCM
  ☆241Updated last year
• mertdas / SharpLateral
  Lateral Movement
  ☆119Updated last year
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆78Updated 2 months ago
• NetSPI / FuncoPop
  Tools for attacking Azure Function Apps
  ☆63Updated 3 weeks ago
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆134Updated last month
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆92Updated 4 months ago
• wunderwuzzi23 / ropci
  So, you think you have MFA? AAD/ROPC/MFA bypass testing tool
  ☆98Updated 2 years ago
• decoder-it / KrbRelay-SMBServer
  ☆184Updated last month
• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆104Updated 6 months ago
• secureworks / TokenMan
  ☆98Updated 2 years ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆80Updated 4 months ago