improsec / ImproHoundLinks
Identify the attack paths in BloodHound breaking your AD tiering
☆322Updated 2 years ago
Alternatives and similar repositories for ImproHound
Users that are interested in ImproHound are comparing it to the libraries listed below
Sorting:
- A tool for pointesters to find candies in SharePoint☆262Updated 2 years ago
- ☆179Updated 8 months ago
- AzureRT - A Powershell module implementing various Azure Red Team tactics☆235Updated 3 years ago
- SpecterOps Presentations☆206Updated last month
- GolenGMSA tool for working with GMSA passwords☆163Updated this week
- Azure AD cheatsheet for the CARTP course☆130Updated 3 years ago
- Finding all things on-prem Microsoft for password spraying and enumeration.☆257Updated 3 years ago
- PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …☆95Updated last month
- A quick handy script to harvest credentials off of a user during a Red Team and get execution of a file from the user☆259Updated 3 years ago
- A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)☆191Updated 4 years ago
- Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04☆115Updated last year
- Some scripts to abuse kerberos using Powershell☆342Updated 2 years ago
- Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.☆469Updated last year
- Audit program for AzureAD☆150Updated 2 years ago
- Get insights into the actual strength and quality of passwords in Active Directory.☆155Updated last year
- User Enumeration of Microsoft Teams users via API☆163Updated last year
- ☆184Updated 9 months ago
- Identifies the bytes that Microsoft Defender flags on.☆89Updated 3 years ago
- ☆165Updated 2 years ago
- Active Directory delegation management tool☆318Updated 2 years ago
- Material for the "Hands-On BloodHound" Workshop☆109Updated 4 years ago
- Abusing Azure services over C2☆351Updated 2 months ago
- ☆190Updated 2 years ago
- POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln☆191Updated 3 years ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆177Updated 2 years ago
- ☆93Updated 4 years ago
- Simple script to extract useful informations from the combo BloodHound + Neo4j☆252Updated 4 months ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆397Updated 5 months ago
- Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.☆168Updated last month
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆397Updated last week