m4lwhere / profilehoundLinks
ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets by identifying active user profiles on domain machines.
☆48Updated this week
Alternatives and similar repositories for profilehound
Users that are interested in profilehound are comparing it to the libraries listed below
Sorting:
- Client-side Encrypted Upload Server Python Script☆65Updated 5 months ago
- BeaconatorC2 is a framework for red teaming and adversarial emulation, providing a full-featured management interface, along with a catal…☆89Updated last month
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆57Updated 8 months ago
- sl0ppy-PrivescTaskCreator.ps1☆38Updated 2 months ago
- This script analyzes the DCSync output file from several tools (such as Mimikatz, Secretsdump and SharpKatz...)☆66Updated 9 months ago
- Lifetime AMSI bypass.☆36Updated 8 months ago
- Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…☆155Updated 2 months ago
- Living off the land searches for explorer and sharepoint☆92Updated 3 weeks ago
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆34Updated 3 months ago
- ☆50Updated 8 months ago
- AutoRMM is a collection of scripts and instructions we are organizing, to test delivery mechanisms for RMM and screen sharing tools, alo…☆91Updated 4 months ago
- ☆34Updated 5 months ago
- ☆120Updated 7 months ago
- ☆151Updated 7 months ago
- The DCERPC only printerbug.py version☆184Updated 2 months ago
- Tool to extract username and password of current user from PanGPA in plaintext☆88Updated last year
- Permanently disable EDRs as local admin☆123Updated last week
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it☆130Updated 4 months ago
- A tool that allows you to extract a client-specific wordlist from the LDAP of an Active Directory.☆57Updated 6 months ago
- Impacket with added MSSQL Relay server☆49Updated 2 weeks ago
- Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…☆79Updated last year
- ☆57Updated 7 months ago
- A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…☆165Updated 5 months ago
- Payload Generation Workflow☆40Updated 5 months ago
- Fast context enumeration for newly obtained Active Directory credentials.☆85Updated 4 months ago
- SpicyAD is a C# Active Directory penetration testing tool designed for authorized security assessments. It combines multiple AD attack te…☆82Updated last week
- A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …☆162Updated last month
- A python script that automates a C2 Profile build☆48Updated 2 weeks ago
- Your Skyfall Infrastructure Pack☆89Updated last month
- Leveraging AWS Lambda Function URLs for C2 Redirection☆45Updated 2 years ago