p0dalirius / crEAP
crEAP will identify WPA Enterprise mode EAP types and harvest usernames and/or handshakes if insecure protocols are in use.
☆24Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for crEAP
- A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).☆20Updated 2 years ago
- Generate password spraying lists based on the pwdLastSet-attribute of users.☆54Updated 11 months ago
- ☆33Updated 3 weeks ago
- ☆68Updated last year
- Automatically extracts NT and LM hashes from Windows memory dumps based on volatility.☆23Updated last year
- The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.☆61Updated 3 months ago
- Enumerate domain machine accounts and perform pre2k password spraying.☆64Updated last year
- Get Fine Grained Password Policy☆65Updated 6 months ago
- Parses Snaffler output file and generate beautified outputs.☆37Updated 2 months ago
- Enumerate the Domain for Readable and Writable Shares☆15Updated 5 months ago
- A script to automatically dump all URLs present in /server-status to a file locally.☆22Updated 2 weeks ago
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.☆94Updated 5 months ago
- Living off the land searches for explorer and sharepoint☆49Updated last week
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆36Updated 7 months ago
- Python setter/getter for property ms-Mcs-AdmPwd used by LAPS.☆78Updated last week
- Most Responder's configuration power in your hand.☆36Updated 8 months ago
- ☆25Updated last year
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆75Updated 6 months ago
- Leveraging AWS Lambda Function URLs for C2 Redirection☆22Updated last year
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆86Updated last week
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆33Updated last month
- Secretsdump C# version only supporting local (live) operation☆47Updated last year
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆76Updated last month
- An old Windows workstations LPE for domain environments without LDAP signing/channel binding.☆28Updated last year
- MailMasta wordpress plugin Local File Inclusion vulnerability (CVE-2016-10956)☆16Updated 2 years ago
- Impacket pre-compiled binaries☆13Updated last year
- A Python POC for CRED1 over SOCKS5☆130Updated last month
- ZSH integration for Impacket☆58Updated last week
- ☆43Updated 4 months ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 2 years ago