praetorian-inc / NTLMReconLinks
A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.
☆91Updated last year
Alternatives and similar repositories for NTLMRecon
Users that are interested in NTLMRecon are comparing it to the libraries listed below
Sorting:
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆84Updated 3 years ago
- Checks for signature requirements over LDAP☆97Updated 2 years ago
- Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS☆184Updated 3 years ago
- Convert ldapdomaindump to Bloodhound☆80Updated last year
- Secretsdump C# version only supporting local (live) operation☆49Updated 2 months ago
- ☆71Updated last week
- Get Fine Grained Password Policy☆70Updated 2 months ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆137Updated last year
- Retrieve AD accounts description and search for password in it☆83Updated 2 years ago
- Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.☆38Updated last year
- C# tool to discover low hanging fruits☆94Updated 2 years ago
- The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …☆44Updated 3 years ago
- PickleC2 is a post-exploitation and lateral movements framework☆96Updated 3 years ago
- Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…☆102Updated 3 years ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆176Updated 2 years ago
- Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.☆46Updated 2 years ago
- Microsoft Exchange password spray tool with proxy support.☆40Updated 3 years ago
- ☆52Updated 2 years ago
- Some scripts to support with importing large datasets into BloodHound☆80Updated last year
- User enumeration and password spraying tool for testing Azure AD☆70Updated 3 years ago
- Exploit for CVE-2023-27532 against Veeam Backup & Replication☆111Updated 2 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆91Updated 3 years ago
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆94Updated 2 years ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.☆81Updated 9 months ago
- ☆88Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆56Updated 3 years ago
- Lateral Movement☆124Updated last year
- ☆118Updated 2 months ago
- Enumerate valid users within Microsoft Teams and OneDrive with clean output.☆58Updated 4 months ago
- CVE-2023-20198 Exploit PoC☆49Updated last year