optionalCTF / SSOh-NoLinks
User enumeration and password spraying tool for testing Azure AD
☆69Updated 3 years ago
Alternatives and similar repositories for SSOh-No
Users that are interested in SSOh-No are comparing it to the libraries listed below
Sorting:
- ☆47Updated 3 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆91Updated last year
- Red Teaming & Active Directory Cheat Sheet.☆40Updated last year
- Convert ldapdomaindump to Bloodhound☆80Updated last year
- Open-Source Phishing Toolkit☆19Updated 4 years ago
- cvet is a Python utility for pulling actionable vulnerabilities from cvetrends.com☆39Updated 2 years ago
- Azure pentesting reference for Altered Security Lab☆24Updated 3 years ago
- RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.☆57Updated 5 months ago
- A Python implementation of dafthack's MSOLSpray. A password spraying tool for Microsoft Online accounts (Azure/O365). The script logs if …☆90Updated 11 months ago
- Network penetration testing toolset wrapper☆81Updated 2 years ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆45Updated 2 years ago
- ☆27Updated 2 years ago
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆38Updated last year
- A Python based ingestor for BloodHound☆84Updated 2 years ago
- Custom queries list for BloodHound☆28Updated 9 months ago
- Bypass Constrained Language Mode in PowerShell☆29Updated 6 years ago
- Creates and sends fake meeting invite☆60Updated 4 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆91Updated 3 years ago
- This repo will contain some basic pentest/RT commands.☆38Updated 3 years ago
- C# and Impacket implementation (here with Kerberos auth support) of PrintNightmare CVE-2021-1675/CVE-2021-34527☆29Updated 3 years ago
- Linux Post-Exploitation tools wrapper☆20Updated 2 years ago
- A basic username enumeration and password spraying tool aimed at spraying Microsoft's DOM based authentication using selenium.☆36Updated last year
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆71Updated 3 years ago
- A list of commands, tools and notes about enumerating and exploiting Active Directory and how to defend against these attacks☆22Updated 3 years ago
- Modified version of PEAS client for offensive operations☆41Updated 2 years ago
- ☆40Updated 2 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- AzureAD Pentest☆19Updated 3 years ago
- Get Fine Grained Password Policy☆70Updated last month
- ☆68Updated this week