lkarlslund / hashmuncherLinks
Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
☆91Updated 2 years ago
Alternatives and similar repositories for hashmuncher
Users that are interested in hashmuncher are comparing it to the libraries listed below
Sorting:
- ☆71Updated last year
- ☆88Updated 2 years ago
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆122Updated 3 years ago
- Get Fine Grained Password Policy☆70Updated last month
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆52Updated last year
- Some scripts to support with importing large datasets into BloodHound☆80Updated last year
- C# version of NTLMRawUnHide☆72Updated 2 years ago
- Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.☆93Updated last year
- A module for CME that spiders across a domain.☆35Updated 2 years ago
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…☆73Updated this week
- Python module for running BOFs☆70Updated last year
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆56Updated 3 years ago
- Slide decks and/or materials from conference presentations☆56Updated 2 years ago
- ☆37Updated last year
- ☆80Updated 10 months ago
- Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.☆120Updated 3 years ago
- Living Off the Foreign Land setup scripts☆70Updated 3 months ago
- A Python POC for CRED1 over SOCKS5☆149Updated 7 months ago
- Microsoft Graph API post-exploitation toolkit☆94Updated 10 months ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆83Updated 2 years ago
- Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post☆124Updated 2 years ago
- ☆118Updated 4 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR☆76Updated last year
- A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure…☆39Updated 3 months ago
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆134Updated 8 months ago
- Lateral Movement☆125Updated last year
- Windows Persistence Toolkit in C#☆36Updated 2 years ago
- A collection of various and sundry code snippets that leverage .NET dynamic tradecraft☆142Updated last year
- Golang search engine scraper intended for identification of published ClickOnce deployments☆75Updated 6 months ago