p0dalirius / crEAP

Related projects ⓘ

Alternatives and complementary repositories for crEAP

• p0dalirius / Hashes-Harvester
  Automatically extracts NT and LM hashes from Windows memory dumps based on volatility.
  ☆23Updated last year
• p0dalirius / MSRPRN-Coerce
  A python script to force authentication using MS-RPRN RemoteFindFirstPrinterChangeNotificationEx function (opnum 65).
  ☆20Updated 2 years ago
• csandker / pxethiefy
  ☆36Updated last month
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆55Updated 11 months ago
• p0dalirius / ldapconsole
  The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.
  ☆61Updated 4 months ago
• zimedev / certipy-merged
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆65Updated this week
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆94Updated 5 months ago
• Acceis / bqm
  Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.
  ☆36Updated 8 months ago
• n00py / GetFGPP
  Get Fine Grained Password Policy
  ☆65Updated 6 months ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆47Updated last year
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆53Updated 2 years ago
• ibaiC / MFade
  A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure…
  ☆35Updated last year
• shelltrail / cmloot
  ☆37Updated 11 months ago
• eversinc33 / Invoke-Pre2kSpray
  Enumerate domain machine accounts and perform pre2k password spraying.
  ☆64Updated last year
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆78Updated 7 months ago
• BronzeBee / DavRelayUp
  An old Windows workstations LPE for domain environments without LDAP signing/channel binding.
  ☆28Updated last year
• Tarakhs / ToyingWithHellsGate
  Brief writeup of post exploitation methodologies.
  ☆17Updated last year
• Tw1sm / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆15Updated 3 weeks ago
• GeisericII / Winpacket
  Impacket pre-compiled binaries
  ☆14Updated last year
• powerseb / PowerExtract
  ☆112Updated last year
• myexploit / living_off_the_land
  ☆43Updated 4 months ago
• zh54321 / SnafflerParser
  Parses Snaffler output file and generate beautified outputs.
  ☆37Updated 3 months ago
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆134Updated last month
• nickvourd / Responder-Parser
  Most Responder's configuration power in your hand.
  ☆36Updated 8 months ago
• Leo4j / Invoke-ShareHunter
  Enumerate the Domain for Readable and Writable Shares
  ☆16Updated 5 months ago
• p0dalirius / pyLAPS
  Python setter/getter for property ms-Mcs-AdmPwd used by LAPS.
  ☆78Updated 3 weeks ago
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆55Updated last month
• p0dalirius / CVE-2022-45771-Pwndoc-LFI-to-RCE
  Pwndoc local file inclusion to remote code execution of Node.js code on the server
  ☆46Updated last year
• p4p1 / havoc-privkit
  a port of privkit bof for havoc
  ☆22Updated 11 months ago