improsec / BackupOperatorToolkitLinks
The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
☆177Updated 2 years ago
Alternatives and similar repositories for BackupOperatorToolkit
Users that are interested in BackupOperatorToolkit are comparing it to the libraries listed below
Sorting:
- ☆117Updated 2 months ago
- ☆159Updated 6 months ago
- Lateral Movement☆125Updated last year
- Determine if the WebClient Service (WebDAV) is running on a remote system☆137Updated last year
- Cortex XDR Config Extractor☆132Updated 2 years ago
- Automated exploitation of MSSQL servers at scale☆108Updated last week
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆139Updated 10 months ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆256Updated 2 years ago
- ☆203Updated last year
- ☆158Updated last year
- A Python POC for CRED1 over SOCKS5☆149Updated 7 months ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆80Updated 8 months ago
- ACL abuse swiss-knife☆123Updated 2 years ago
- Lord Of Active Directory - automatic vulnerable active directory on AWS☆146Updated last year
- PowerShell Reverse Shell☆78Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆229Updated 2 weeks ago
- Some scripts to support with importing large datasets into BloodHound☆80Updated last year
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆200Updated 7 months ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆236Updated last year
- Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…☆100Updated 3 years ago
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆93Updated 2 years ago
- ☆61Updated 4 months ago
- ☆99Updated 3 years ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆114Updated 2 months ago
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆122Updated 3 years ago
- linikatz is a tool to attack AD on UNIX☆147Updated last year
- ADCS cert template modification and ACL enumeration☆136Updated last year
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆83Updated 3 years ago
- Tool for viewing NTDS.dit☆167Updated 2 months ago
- ☆69Updated 2 months ago