horizon3ai / CVE-2021-38647

Related projects ⓘ

Alternatives and complementary repositories for CVE-2021-38647

• ly4k / Pachine
  Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)
  ☆270Updated 2 years ago
• n00py / LAPSDumper
  Dumping LAPS from Python
  ☆255Updated last year
• hausec / ProxyLogon
  ☆290Updated 4 months ago
• tothi / rbcd-attack
  Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
  ☆496Updated 2 years ago
• GoSecure / WSuspicious
  WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
  ☆346Updated 4 years ago
• AidenPearce369 / ADReaper
  A fast enumeration tool for Windows Active Directory Pentesting written in Go
  ☆277Updated last year
• alt3kx / CVE-2021-21985_PoC
  ☆214Updated last year
• Mr-Un1k0d3r / ADHuntTool
  official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)
  ☆231Updated 2 years ago
• nyxgeek / ntlmscan
  scan for NTLM directories
  ☆346Updated 4 months ago
• ShutdownRepo / targetedKerberoast
  Kerberoast with ACL abuse capabilities
  ☆352Updated 3 weeks ago
• SecuProject / ADenum
  AD Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with…
  ☆291Updated last year
• S3cur3Th1sSh1t / MultiPotato
  ☆499Updated 3 years ago
• mpgn / BackupOperatorToDA
  From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
  ☆399Updated 2 years ago
• Synzack / ldapper
  ☆201Updated last year
• testanull / ProxyNotShell-PoC
  ☆402Updated 2 years ago
• preemptdev / bluffy
  Convert shellcode into different formats!
  ☆343Updated last year
• optiv / Registry-Recon
  Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
  ☆322Updated 2 years ago
• HuskyHacks / ShadowSteal
  Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
  ☆207Updated 2 years ago
• micahvandeusen / gMSADumper
  Lists who can read any gMSA password blobs and parses them if the current user has access.
  ☆245Updated 9 months ago
• yaap7 / ldapsearch-ad
  Python3 script to quickly get various information from a domain controller through his LDAP service.
  ☆171Updated 3 weeks ago
• nemo-wq / PrintNightmare-CVE-2021-34527
  PrintNightmare - Windows Print Spooler RCE/LPE Vulnerability (CVE-2021-34527, CVE-2021-1675) proof of concept exploits
  ☆122Updated 3 years ago
• pucarasec / zuthaka
  Zuthaka is an open source application designed to assist red-teaming efforts, by simplifying the task of managing different APTs and othe…
  ☆174Updated 2 years ago
• tid4l / GoWard
  A robust Red Team proxy written in Go.
  ☆160Updated 2 years ago
• waldo-irc / CVE-2021-21551
  Exploit to SYSTEM for CVE-2021-21551
  ☆237Updated 3 years ago
• mxrch / snmp-shell
  Shell Simulation over Net-SNMP with extend functionality
  ☆89Updated 3 years ago
• ZeroDayLab / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆216Updated 2 years ago
• ShutdownRepo / smartbrute
  Password spraying and bruteforcing tool for Active Directory Domain Services
  ☆349Updated 3 weeks ago
• ly4k / PrintNightmare
  Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527)
  ☆181Updated 3 years ago
• xforcered / SQLRecon
  A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
  ☆383Updated 4 months ago