n00py / NorkNorkLinks
Powershell Empire Persistence finder
☆119Updated 8 years ago
Alternatives and similar repositories for NorkNork
Users that are interested in NorkNork are comparing it to the libraries listed below
Sorting:
- 504 VSAgent☆23Updated 7 years ago
- Credit to Helge Klein - https://helgeklein.com/blog/2015/02/creating-realistic-test-user-accounts-active-directory/☆69Updated 7 years ago
- Generate ATT&CK Navigator layer file from PowerShell Empire agent logs☆49Updated 6 years ago
- lterm is a small script built to install a bash hook for full terminal logging.☆55Updated 8 years ago
- Comprehensive Pivoting Framework☆20Updated 8 years ago
- An offensive Powershell console☆30Updated 9 years ago
- malicious file maker/sender to create and send malicious attachments to test your email filter/alerting☆69Updated 7 years ago
- This is a simple parser for/decrypter for Impacket's esentutl.py utility. It assists with decrypting hashes and hash histories from ntds.…☆71Updated 8 years ago
- ☆59Updated 6 years ago
- Speeds up the extraction of password hashes from ntds.dit files. For use with the ntdsxtract project or the dshash script☆27Updated last year
- ☆76Updated 7 years ago
- CloudBurst is a red team framework for interacting with cloud providers to capture, compromise, and exfil data.☆36Updated 6 years ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆104Updated 7 years ago
- Powershell MS Outlook enumeration and phishing tool☆76Updated 9 years ago
- IR-Tools - PowerShell tools for IR☆130Updated 7 years ago
- Powershell Persistence Locator☆66Updated 8 years ago
- Useful Threat Hunting Stuff☆33Updated 4 years ago
- A powershell script for creating a Windows honeyport.☆89Updated 2 months ago
- A collection of scripts I've written to help red and blue teams with malware persistence techniques.☆127Updated 7 years ago
- ☆98Updated 6 years ago
- ☆97Updated 9 years ago
- This tool will extract useful information from the McAfee update SiteList file and decrypt the associated password for each entry.☆26Updated 7 years ago
- A collection of PowerShell Modules for BloodHound/Empire Orchestration☆106Updated 7 years ago
- A companion tool for BloodHound offering Active Directory statistics and number crunching☆64Updated 6 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆185Updated 5 years ago
- Active Directory enumeration from non-domain system.☆118Updated 8 years ago
- ☆108Updated 8 years ago
- ☆59Updated 4 years ago
- All materials from our Black Hat 2018 "Subverting Sysmon" talk☆135Updated 6 years ago
- A repo to hold some scripts pertaining WMI (Windows implementation of WBEM) forensics☆86Updated 7 years ago