mr-r3bot / Proxyshell-ExchangeLinks
Poc script for ProxyShell exploit chain in Exchange Server
☆21Updated 3 years ago
Alternatives and similar repositories for Proxyshell-Exchange
Users that are interested in Proxyshell-Exchange are comparing it to the libraries listed below
Sorting:
- Convert ldapdomaindump to Bloodhound☆80Updated last year
- Use rpc null sessions to retrieve machine list, domain admin list, domain controllers☆14Updated 2 years ago
- SMB Auto Relay provides the automation of SMB/NTLM Relay technique for pentesting and red teaming exercises in active directory environme…☆47Updated 4 years ago
- Modified version of PEAS client for offensive operations☆41Updated 2 years ago
- RDP Checker☆63Updated last year
- Enumerate AWS cloud resources based on provided credential☆51Updated 3 years ago
- Microsoft Exchange password spray tool with proxy support.☆40Updated 4 years ago
- Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.☆21Updated 4 years ago
- User enumeration and password spraying tool for testing Azure AD☆70Updated 3 years ago
- Finding SSL Blindspots for Red Teams☆32Updated 4 years ago
- A web shell for pivoting and lateral movement☆34Updated 7 years ago
- A basic username enumeration and password spraying tool aimed at spraying Microsoft's DOM based authentication using selenium.☆36Updated last year
- Red Teaming & Active Directory Cheat Sheet.☆40Updated last year
- A Python native library containing lots of useful functions to write efficient scripts to hack stuff.☆36Updated last month
- Easily-guessable Password Generator for Password Spray Attack☆21Updated 5 years ago
- Check the Domain for Local Admin Access☆16Updated 4 months ago
- A Python script to find tenant id an region from a list of domain names.☆15Updated 5 months ago
- Add SD for controlled computer object to a target object for RBCD using LDAP☆38Updated 3 years ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆19Updated 2 years ago
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 3 years ago
- OSINT tool abusing SecurityTrails domain suggestion API to find potentially related domains by keyword and brute force.☆26Updated 2 years ago
- A script used to query the dehashed API and filter for more useful results☆16Updated 4 years ago
- Azure pentesting reference for Altered Security Lab☆24Updated 3 years ago
- A basic Terraform configuration for provisioning simple red team infrastructure in DigitalOcean☆12Updated 4 years ago
- ☆33Updated 5 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…☆14Updated 2 years ago
- ☆18Updated 4 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆42Updated 3 months ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆92Updated last year