mitchmoser / LACheck
☆84Updated 3 years ago
Alternatives and similar repositories for LACheck:
Users that are interested in LACheck are comparing it to the libraries listed below
- ☆139Updated 2 years ago
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆121Updated 3 years ago
- C# version of NTLMRawUnHide☆72Updated 2 years ago
- ☆92Updated 2 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆127Updated last year
- ☆92Updated 3 years ago
- Collection of Beacon Object Files (BOFs) for shells and lols☆115Updated 3 years ago
- A BOF to interact with COM objects associated with the Windows software firewall.☆104Updated 3 years ago
- A C# tool to output crackable DPAPI hashes from user MasterKeys☆132Updated 6 months ago
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆54Updated 4 years ago
- UI for creating LNKs☆97Updated 3 years ago
- ☆88Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆54Updated 3 years ago
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆52Updated 9 months ago
- Beacon Object File & C# project to check LDAP signing☆186Updated 7 months ago
- Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later☆91Updated last year
- Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post☆122Updated 2 years ago
- this repo is to cover the other undocumented or published / in different langaue to achieve shellcode injection via windows callback func…☆85Updated 2 years ago
- ☆61Updated 2 years ago
- ☆71Updated last year
- Pass the Hash to a named pipe for token Impersonation☆141Updated 3 years ago
- credential dump using foreshaw technique using SeTrustedCredmanAccessPrivilege☆123Updated 3 years ago
- Cobalt Strike BOF that uses a custom ASM HalosGate & HellsGate syscaller to return a list of processes☆103Updated 2 years ago
- Proof of Concept code and samples presenting emerging threat of MSI installer files.☆78Updated 2 years ago
- Grab unsaved Notepad contents with a Beacon Object File☆50Updated 2 years ago
- ☆106Updated 11 months ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆74Updated 2 years ago
- Section Mapping Process Injection (secinject): Cobalt Strike BOF☆92Updated 3 years ago
- Get Fine Grained Password Policy☆68Updated 10 months ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆83Updated last year