mandiant / ADFSDumpLinks
☆364Updated 2 years ago
Alternatives and similar repositories for ADFSDump
Users that are interested in ADFSDump are comparing it to the libraries listed below
Sorting:
- ☆408Updated 4 months ago
- A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)☆192Updated 4 years ago
- ☆401Updated 4 years ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆365Updated 2 weeks ago
- Physmem2profit can be used to create a minidump of a target hosts' LSASS process by analysing physical memory remotely☆421Updated 3 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆259Updated 3 years ago
- SpoolSample -> Responder w/NetNTLM Downgrade -> NetNTLMv1 -> NTLM -> Kerberos Silver Ticket☆896Updated 4 years ago
- Enumerate Domain Data☆334Updated 2 years ago
- AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Co…☆229Updated 4 years ago
- Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration feature…☆300Updated 2 years ago
- ☆363Updated 4 years ago
- RACE is a PowerShell module for executing ACL attacks against Windows targets.☆232Updated 2 years ago
- .NET Project for performing Authenticated Remote Execution☆403Updated 2 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆236Updated 3 years ago
- A tool to help query AD via the LDAP protocol☆585Updated last year
- WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations☆368Updated 4 years ago
- Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.☆323Updated 2 years ago
- Bypass for PowerShell Constrained Language Mode☆401Updated 3 years ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆400Updated last month
- ☆237Updated 2 years ago
- OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at s…☆532Updated 3 years ago
- LDAP library for auditing MS AD☆457Updated last week
- LiquidSnake is a tool that allows operators to perform fileless lateral movement using WMI Event Subscriptions and GadgetToJScript☆344Updated 4 years ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆482Updated 3 years ago
- Enumerate all network shares in the current domain. Also, can resolve names to IP addresses.☆299Updated 5 years ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆219Updated 4 years ago
- Identify the attack paths in BloodHound breaking your AD tiering☆323Updated 2 years ago
- Proof-of-concept obfuscation toolkit for C# post-exploitation tools☆432Updated 3 years ago
- Command line interface to dump LSASS memory to disk via SilentProcessExit☆453Updated 4 years ago
- An effort to track security vendors' use of Microsoft's Antimalware Scan Interface☆249Updated 3 years ago