idnahacks / AD_attack_defend_cheatsheet
A list of commands, tools and notes about enumerating and exploiting Active Directory and how to defend against these attacks
☆20Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for AD_attack_defend_cheatsheet
- ☆68Updated last year
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆90Updated 2 years ago
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools☆85Updated last year
- Python3 Ebowla... 3Bowla☆17Updated 4 years ago
- A script that parses PowerView's output for GPO analysis. Integrated into bloodhound to find misconfigurations of URA, SMB signing etc☆12Updated 4 years ago
- Tradecraft Development Fundamentals☆40Updated 3 years ago
- Discord C2 Profile for Mythic☆24Updated 6 months ago
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆82Updated last year
- Living off the land searches for explorer and sharepoint☆49Updated last week
- Red Team "Drop and Run" NAC (802.1x) Bypass☆68Updated last year
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆36Updated 7 months ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- Linux Post-Exploitation tools wrapper☆20Updated last year
- ☆25Updated last year
- Find Inbound Email Domains☆21Updated 10 months ago
- ☆46Updated 2 years ago
- ☆43Updated 4 months ago
- Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.☆20Updated 3 years ago
- ☆25Updated 2 years ago
- Windows Post-Exploitation tools wrapper☆11Updated 4 months ago
- Red Teaming & Active Directory Cheat Sheet.☆39Updated last year
- This repo hosts a poc of how to execute F# code within an unmanaged process☆65Updated 4 months ago
- Python tool to find vulnerable AD object and generating csv report☆26Updated 2 years ago
- Convert an LDIF file to JSON files ingestible by BloodHound☆38Updated last month
- User enumeration and password spraying tool for testing Azure AD☆68Updated 2 years ago
- ☆51Updated last year
- ☆9Updated this week
- ☆33Updated 3 weeks ago
- Microsoft365 Device Code Phishing Framework☆34Updated 3 years ago