leoloobeek / LAPSToolkit

Related projects ⓘ

Alternatives and complementary repositories for LAPSToolkit

• samratashok / ADModule
  Microsoft signed ActiveDirectory PowerShell module
  ☆848Updated 5 years ago
• gdedrouas / Exchange-AD-Privesc
  Exchange privilege escalations to Active Directory
  ☆728Updated last year
• Kevin-Robertson / Powermad
  PowerShell MachineAccountQuota and DNS exploit tools
  ☆1,238Updated last year
• hausec / Bloodhound-Custom-Queries
  Custom Query list for the Bloodhound GUI based off my cheatsheet
  ☆750Updated last year
• dirkjanm / adconnectdump
  Dump Azure AD Connect credentials for Azure AD and Active Directory
  ☆618Updated last week
• dirkjanm / adidnsdump
  Active Directory Integrated DNS dumping by any authenticated user
  ☆930Updated 11 months ago
• the-useless-one / pywerview
  A (partial) Python rewriting of PowerSploit's PowerView
  ☆915Updated 2 weeks ago
• adrecon / ADRecon
  ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the…
  ☆703Updated last month
• dirkjanm / krbrelayx
  Kerberos unconstrained delegation abuse toolkit
  ☆1,142Updated last week
• fox-it / aclpwn.py
  Active Directory ACL exploitation with BloodHound
  ☆703Updated 3 years ago
• Group3r / Group3r
  Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.
  ☆700Updated 3 months ago
• FSecureLABS / SharpGPOAbuse
  SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GP…
  ☆1,066Updated 3 years ago
• leechristensen / SpoolSample
  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…
  ☆924Updated 5 months ago
• OmerYa / Invisi-Shell
  Hide your Powershell script in plain sight. Bypass all Powershell security features
  ☆1,105Updated 5 years ago
• NotMedic / NetNTLMtoSilverTicket
  SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket
  ☆763Updated 3 years ago
• l0ss / Grouper2
  Find vulnerabilities in AD Group Policy
  ☆642Updated 2 years ago
• GhostPack / SharpUp
  SharpUp is a C# port of various PowerUp functionality.
  ☆1,262Updated 9 months ago
• dirkjanm / PrivExchange
  Exchange your privileges for Domain Admin privs by abusing Exchange
  ☆980Updated 4 years ago
• evilmog / ntlmv1-multi
  NTLMv1 Multitool
  ☆589Updated last month
• CompassSecurity / BloodHoundQueries
  ☆617Updated last year
• dev-2null / ADCollector
  A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.
  ☆618Updated 2 years ago
• fox-it / Invoke-ACLPwn
  ☆512Updated 2 years ago
• dirkjanm / ldapdomaindump
  Active Directory information dumper via LDAP
  ☆1,192Updated 3 months ago
• GhostPack / ForgeCert
  "Golden" certificates
  ☆650Updated 3 months ago
• decoder-it / psgetsystem
  getsystem via parent process using ps1 & embeded c#
  ☆383Updated last year
• GhostPack / PSPKIAudit
  PowerShell toolkit for AD CS auditing based on the PSPKI toolkit.
  ☆812Updated 8 months ago
• bitsadmin / nopowershell
  PowerShell rebuilt in C# for Red Teaming purposes
  ☆965Updated last year
• c3c / ADExplorerSnapshot.py
  ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping …
  ☆890Updated last month
• dafthack / MSOLSpray
  A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if a user cred is valid, if MFA is enabled on the ac…
  ☆912Updated 8 months ago
• nyxgeek / o365recon
  retrieve information via O365 and AzureAD with a valid cred
  ☆691Updated 2 years ago