p0dalirius / MSRPRN-Coerce

Related projects ⓘ

Alternatives and complementary repositories for MSRPRN-Coerce

• p0dalirius / AccountShadowTakeover
  A python script to automatically add a KeyCredentialLink to newly created users, by quickly connecting to them with default credentials.
  ☆22Updated 7 months ago
• p0dalirius / LimeSurvey-webshell-plugin
  A webshell plugin and interactive shell for pentesting a LimeSurvey application.
  ☆12Updated last week
• p0dalirius / TargetAllDomainObjects
  A python wrapper to run a command on against all users/computers/DCs of a Windows Domain
  ☆28Updated 2 years ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆47Updated last year
• p0dalirius / Hashes-Harvester
  Automatically extracts NT and LM hashes from Windows memory dumps based on volatility.
  ☆23Updated last year
• p0dalirius / ldapconsole
  The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.
  ☆61Updated 3 months ago
• xct / adopt
  Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆13Updated 2 years ago
• p0dalirius / pyLootApacheServerStatus
  A script to automatically dump all URLs present in /server-status to a file locally.
  ☆22Updated 2 weeks ago
• p0dalirius / JoGet-webshell-plugin
  A webshell plugin and interactive shell for pentesting JoGet application.
  ☆12Updated 2 years ago
• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆33Updated last month
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆53Updated 2 years ago
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆35Updated 9 months ago
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 2 years ago
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆54Updated 11 months ago
• slygoo / pssrecon
  ☆13Updated last month
• Hakumarachi / SQL_loose_comparison
  A list of weird comparison in SQL
  ☆14Updated 2 years ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆75Updated 6 months ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆62Updated last year
• d3lb3 / KeePass-the-Hash
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆30Updated last year
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆42Updated 2 years ago
• OtterHacker / Cerbere
  ☆46Updated last year
• p0dalirius / CVE-2016-10956-mail-masta
  MailMasta wordpress plugin Local File Inclusion vulnerability (CVE-2016-10956)
  ☆16Updated 2 years ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated last year
• JonasBK / Powershell
  ☆30Updated last month
• ChoiSG / SharpPSLoader
  Simple .NET loader for loading and executing Powershell payloads
  ☆14Updated 3 years ago
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated 5 months ago
• Tw1sm / aesKrbKeyGen
  Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3
  ☆47Updated 2 years ago
• p0dalirius / msFlagsDecoder
  Decode the values of common Windows properties such as userAccountControl and sAMAccountType.
  ☆21Updated last year
• dadevel / impacket-zsh-integration
  ZSH integration for Impacket
  ☆58Updated last week
• BronzeBee / DavRelayUp
  An old Windows workstations LPE for domain environments without LDAP signing/channel binding.
  ☆28Updated last year