passtheticket / Active-Directory-Recon

Related projects ⓘ

Alternatives and complementary repositories for Active-Directory-Recon

• IAMinZoho / OFFSEC-PowerShell
  My Favorite Offensive Security Scripts
  ☆62Updated last year
• AssuranceMaladieSec / AD-description-password-finder
  Retrieve AD accounts description and search for password in it
  ☆83Updated 2 years ago
• dadevel / mssql-spider
  Automated exploitation of MSSQL servers at scale
  ☆81Updated last week
• p0dalirius / pyLAPS
  Python setter/getter for property ms-Mcs-AdmPwd used by LAPS.
  ☆78Updated last week
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆166Updated last year
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆54Updated 11 months ago
• rodolfomarianocy / Tricks-Pentest-Active-Directory
  Repository with quick triggers to help during Pentest in an Active Directory environment.
  ☆36Updated last week
• arth0sz / Practice-AD-CS-Domain-Escalation
  Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…
  ☆85Updated last year
• yehia-mamdouh / Shell3er
  PowerShell Reverse Shell
  ☆61Updated last year
• mertdas / SharpLateral
  Lateral Movement
  ☆118Updated 11 months ago
• HernanRodriguez1 / MimikatzFUD
  ☆95Updated 2 years ago
• optiv / KnockKnock
  Enumerate valid users within Microsoft Teams and OneDrive with clean output.
  ☆58Updated last month
• sse-secure-systems / Active-Directory-Spotlights
  ☆34Updated last year
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• ananth-she11z / AutoSQL
  A tool to enumerate and exploit SQL Servers in AD
  ☆34Updated last year
• alperenugurlu / Nac_Bypass_Agent
  This function combines all the above functions and takes necessary information from the user to change the IP and MAC address, start the …
  ☆73Updated last year
• Laokoon-SecurITy / Cortex-XDR-Config-Extractor
  Cortex XDR Config Extractor
  ☆119Updated last year
• rootSySdk / PowerGPOAbuse
  Powershell version of SharpGPOAbuse
  ☆70Updated 3 years ago
• alperenugurlu / AD_Enumeration_Hunt
  ☆92Updated last year
• Acceis / bqm
  Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.
  ☆36Updated 7 months ago
• JoelGMSec / AzureGraph
  Azure AD enumeration over MS Graph
  ☆80Updated last year
• 0xBallpoint / LOAD
  Lord Of Active Directory - automatic vulnerable active directory on AWS
  ☆130Updated last year
• ST1LLY / dc-sonar
  Analyzing AD domains for security risks related to user accounts
  ☆63Updated last year
• kh4sh3i / exchange-penetration-testing
  The great Microsoft exchange hack: A penetration tester’s guide (exchange penetration testing)
  ☆77Updated 5 months ago
• CCob / gssapi-abuse
  A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
  ☆139Updated last year
• maliciousgroup / C2_Automation
  C2 Automation using Linode
  ☆78Updated 2 years ago
• seriotonctf / cme-nxc-cheat-sheet
  A cheat sheet for CrackMapExec and NetExec
  ☆45Updated 3 months ago
• icyguider / NewPowerDNS
  Updated version of PowerDNS by @domchell. Adds support for transfers over DNS A records and a few other useful features.
  ☆82Updated last year
• 0xJs / OSCP_cheatsheet
  ☆32Updated 3 years ago
• ustayready / ShredHound
  Small utility to chunk up a large BloodHound JSON file into smaller files for importing.
  ☆82Updated last year
• nickvourd / Responder-Parser
  Most Responder's configuration power in your hand.
  ☆36Updated 8 months ago