nettitude / MalSCCMLinks
☆247Updated last year
Alternatives and similar repositories for MalSCCM
Users that are interested in MalSCCM are comparing it to the libraries listed below
Sorting:
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆122Updated 3 years ago
- ☆151Updated 3 months ago
- OPSEC safe Kerberoasting in C#☆192Updated 2 years ago
- ☆159Updated 6 months ago
- GolenGMSA tool for working with GMSA passwords☆150Updated last year
- Password attacks and MFA validation against various endpoints in Azure and Office 365☆151Updated 2 years ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆175Updated 2 years ago
- Cobalt Strike External C2 Integration With Azure Servicebus, C2 traffic via Azure Servicebus☆229Updated 3 years ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆177Updated 2 years ago
- Modular C# framework to exfiltrate loot over secure and trusted channels.☆127Updated 3 years ago
- Beacon Object File & C# project to check LDAP signing☆190Updated 9 months ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆137Updated last year
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆184Updated 2 years ago
- Koppeling x Metatwin x LazySign☆210Updated 3 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆256Updated 2 years ago
- AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Co…☆222Updated 4 years ago
- ADCS cert template modification and ACL enumeration☆136Updated last year
- Artificially inflate a given binary to exceed common EDR file size limits. Can be used to bypass common EDR.☆120Updated 3 years ago
- ☆99Updated 3 years ago
- Powershell version of SharpGPOAbuse☆78Updated 4 years ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆236Updated last year
- Retrieve AD accounts description and search for password in it☆83Updated 2 years ago
- Remotely enables Restricted Admin Mode☆210Updated 3 years ago
- Run Powershell without software restrictions.☆285Updated 3 years ago
- Finding all things on-prem Microsoft for password spraying and enumeration.☆255Updated 3 years ago
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆298Updated 2 years ago
- ☆92Updated 2 years ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 2 years ago
- MS-FSRVP coercion abuse PoC☆291Updated 3 years ago
- Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations☆154Updated last year