improsec / ImproHoundLinks
Identify the attack paths in BloodHound breaking your AD tiering
☆323Updated 2 years ago
Alternatives and similar repositories for ImproHound
Users that are interested in ImproHound are comparing it to the libraries listed below
Sorting:
- AzureRT - A Powershell module implementing various Azure Red Team tactics☆236Updated 3 years ago
- ☆179Updated 10 months ago
- A tool for pointesters to find candies in SharePoint☆266Updated 2 years ago
- A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)☆194Updated 4 years ago
- GolenGMSA tool for working with GMSA passwords☆163Updated 2 months ago
- SpecterOps Presentations☆209Updated 4 months ago
- Azure AD cheatsheet for the CARTP course☆132Updated 3 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆96Updated 3 months ago
- A quick handy script to harvest credentials off of a user during a Red Team and get execution of a file from the user☆257Updated 3 years ago
- Some scripts to abuse kerberos using Powershell☆341Updated 2 years ago
- Finding all things on-prem Microsoft for password spraying and enumeration.☆257Updated 3 years ago
- Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04☆115Updated last year
- Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.☆474Updated last year
- Material for the "Hands-On BloodHound" Workshop☆110Updated 4 years ago
- ☆166Updated 2 years ago
- Monitor your PingCastle scans to highlight the rule diff between two scans☆152Updated 2 weeks ago
- ☆195Updated last month
- Get insights into the actual strength and quality of passwords in Active Directory.☆157Updated last year
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆399Updated 2 months ago
- Collection of cyphers for bloodhound☆153Updated last year
- ☆156Updated 8 months ago
- ☆153Updated last year
- ☆96Updated 5 years ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆402Updated 7 months ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆184Updated 2 years ago
- PXEThief is a set of tooling that can extract passwords from the Operating System Deployment functionality in Microsoft Endpoint Configur…☆399Updated last year
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆364Updated last year
- Identifies the bytes that Microsoft Defender flags on.☆90Updated 3 years ago
- ☆408Updated 4 months ago
- AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Co…☆230Updated 4 years ago