lkarlslund / hashmuncher
Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
☆91Updated last year
Alternatives and similar repositories for hashmuncher:
Users that are interested in hashmuncher are comparing it to the libraries listed below
- ☆71Updated last year
- Living Off the Foreign Land setup scripts☆67Updated last month
- ☆88Updated 2 years ago
- Get Fine Grained Password Policy☆69Updated 11 months ago
- Abuse Azure API permissions for red teaming☆64Updated 2 years ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆52Updated 10 months ago
- ☆79Updated 8 months ago
- Microsoft Graph API post-exploitation toolkit☆94Updated 9 months ago
- A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure…☆37Updated last month
- Python module for running BOFs☆68Updated last year
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆121Updated 3 years ago
- Lateral Movement☆122Updated last year
- SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your a…☆73Updated 11 months ago
- A Python POC for CRED1 over SOCKS5☆146Updated 6 months ago
- Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.☆119Updated 3 years ago
- Some scripts to support with importing large datasets into BloodHound☆79Updated last year
- C# version of NTLMRawUnHide☆72Updated 2 years ago
- A module for CME that spiders across a domain.☆35Updated 2 years ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆79Updated 2 years ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆86Updated 9 months ago
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆135Updated 7 months ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆74Updated 2 years ago
- ☆115Updated 3 years ago
- Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.☆89Updated 11 months ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆132Updated last year
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆55Updated 3 years ago
- Depending on the AV/EPP/EDR creating a Taskschedule Job with a default cradle is often flagged☆86Updated 2 years ago
- Automatically create an operation log of your shell! Supports Linux (Bash/Zsh) and Windows (PowerShell/CMD).☆31Updated last month
- ☆84Updated 3 years ago
- Tool for viewing NTDS.dit☆152Updated last month