itm4n / PrivescCheck

Related projects: ⓘ

• gtworek / Priv2Admin
  Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.
  ☆1,932Updated last year
• S3cur3Th1sSh1t / WinPwn
  Automation for internal Windows Penetrationtest / AD-Security
  ☆3,280Updated 7 months ago
• GhostPack / Rubeus
  Trying to tame the three-headed dog.
  ☆4,033Updated last week
• ropnop / kerbrute
  A tool to perform Kerberos pre-auth bruteforcing
  ☆2,572Updated 3 weeks ago
• Flangvik / SharpCollection
  Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure …
  ☆2,243Updated this week
• itm4n / PrintSpoofer
  Abusing impersonation privileges through the "Printer Bug"
  ☆1,845Updated 4 years ago
• BC-SECURITY / Empire
  Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.
  ☆4,184Updated last week
• SnaffCon / Snaffler
  a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
  ☆2,007Updated last month
• Integration-IT / Active-Directory-Exploitation-Cheat-Sheet
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆2,448Updated last year
• GhostPack / Seatbelt
  Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensi…
  ☆3,690Updated 2 months ago
• its-a-feature / Mythic
  A collaborative, multi-platform, red teaming framework
  ☆3,145Updated this week
• login-securite / lsassy
  Extract credentials from lsass remotely
  ☆2,021Updated 2 months ago
• ohpe / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆2,385Updated 2 years ago
• skelsec / pypykatz
  Mimikatz implementation in pure Python
  ☆2,814Updated last month
• dirkjanm / BloodHound.py
  A Python based ingestor for BloodHound
  ☆1,894Updated last month
• Hackplayers / evil-winrm
  The ultimate WinRM shell for hacking/pentesting
  ☆4,412Updated 2 months ago
• 411Hall / JAWS
  JAWS - Just Another Windows (Enum) Script
  ☆1,663Updated 3 years ago
• bitsadmin / wesng
  Windows Exploit Suggester - Next Generation
  ☆4,125Updated this week
• ly4k / Certipy
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆2,317Updated last month
• optiv / ScareCrow
  ScareCrow - Payload creation framework designed around EDR bypass.
  ☆2,709Updated last year
• cobbr / Covenant
  Covenant is a collaborative .NET C2 framework for red teamers.
  ☆4,141Updated 2 months ago
• nettitude / PoshC2
  A proxy aware C2 framework used to aid red teamers with post-exploitation and lateral movement.
  ☆1,783Updated 2 weeks ago
• safebuffer / vulnerable-AD
  Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
  ☆1,974Updated 5 months ago
• S3cur3Th1sSh1t / Amsi-Bypass-Powershell
  This repo contains some Amsi Bypass methods i found on different Blog Posts.
  ☆1,669Updated 2 months ago
• BC-SECURITY / Starkiller
  Starkiller is a Frontend for PowerShell Empire.
  ☆1,344Updated 4 months ago
• rasta-mouse / Watson
  Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities
  ☆1,533Updated 3 years ago
• mantvydasb / RedTeaming-Tactics-and-Techniques
  Red Teaming Tactics and Techniques
  ☆3,979Updated 3 weeks ago
• cube0x0 / CVE-2021-1675
  C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
  ☆1,830Updated 3 years ago
• byt3bl33d3r / SILENTTRINITY
  An asynchronous, collaborative post-exploitation agent powered by Python and .NET's DLR
  ☆2,173Updated 9 months ago
• S1ckB0y1337 / Active-Directory-Exploitation-Cheat-Sheet
  A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
  ☆5,447Updated this week