jwardsmith / Active-Directory-ExploitationLinks
This cheatsheet contains Active Directory (AD) exploitation techniques, showcasing methods used to identify and abuse misconfigurations or weaknesses within AD environments.
☆48Updated 2 years ago
Alternatives and similar repositories for Active-Directory-Exploitation
Users that are interested in Active-Directory-Exploitation are comparing it to the libraries listed below
Sorting:
- Find Microsoft Exchange instance for a given domain and identify the exact version☆188Updated 3 years ago
- MSSQL Database Attacker tool☆193Updated 3 years ago
- Azure AD Password Checker☆86Updated last year
- Retrieve AD accounts description and search for password in it☆82Updated 3 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆41Updated 3 years ago
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆132Updated 2 years ago
- POC for CVE-2022-47966 affecting multiple ManageEngine products☆128Updated 3 years ago
- Active Directory password spraying tool. Auto fetches user list and avoids potential lockouts.☆131Updated 4 years ago
- GUI alternative to the Rubeus command line tool, for all your Kerberos exploit requirements☆185Updated 4 years ago
- ACL abuse swiss-knife☆127Updated 2 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆115Updated 2 years ago
- ☆95Updated 3 years ago
- A robust Red Team proxy written in Go.☆166Updated 4 years ago
- This code bypass AMSI by setting JE instruction to JNE in assembly of amsi.dll file☆36Updated 2 years ago
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆186Updated 3 years ago
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆89Updated 3 years ago
- Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…☆111Updated 3 years ago
- PoCs of RCEs against open source C2 servers☆91Updated last year
- A webshell application and interactive shell for pentesting Apache Tomcat servers.☆125Updated 11 months ago
- PrintNightmare (CVE-2021-34527) PoC Exploit☆119Updated 3 years ago
- ☆85Updated last year
- Exploiting CVE-2021-44228 in vCenter for remote code execution and more.☆109Updated 4 years ago
- Simple PoC of the CVE-2023-23397 vulnerability with the payload sent by email.☆127Updated 2 years ago
- Impacket is a collection of Python classes for working with network protocols.☆45Updated 4 years ago
- CVE-2021-38647 - POC to exploit unauthenticated RCE #OMIGOD☆67Updated 4 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆105Updated 2 years ago
- Powershell version of SharpGPOAbuse☆89Updated 4 years ago
- Python implementation for PrintNightmare (CVE-2021-1675 / CVE-2021-34527)☆205Updated 4 years ago
- Accurately fingerprint and detect vulnerable (and patched!) versions of Netscaler / Citrix ADC to CVE-2023-3519☆85Updated 2 years ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆178Updated 2 years ago