preempt / ntlm-scannerLinks
A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities
☆204Updated 4 years ago
Alternatives and similar repositories for ntlm-scanner
Users that are interested in ntlm-scanner are comparing it to the libraries listed below
Sorting:
- Domain user enumeration tool☆215Updated last year
- Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.☆204Updated 6 years ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆308Updated 2 years ago
- A curated list of awesome BloodhoundAD resources☆230Updated 2 years ago
- ☆257Updated 2 years ago
- Tool that automates Active Directory enumeration☆88Updated 4 years ago
- Resources for our Active Directory security workshops☆139Updated 3 years ago
- Check-LocalAdminHash is a PowerShell tool that attempts to authenticate to multiple hosts over either WMI or SMB using a password hash to…☆178Updated last year
- Powershell function to pull the local admin passwords from LDAP, stored there by LAPS.☆119Updated 5 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆166Updated 4 years ago
- lateral movement techniques that can be used during red team exercises☆273Updated 5 years ago
- Fake User Generator for Active Directory Environments☆158Updated 6 years ago
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆380Updated 5 years ago
- Repo with various Red Team scripts☆145Updated 4 years ago
- Some .ps1 scripts for pentesting☆132Updated 4 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆185Updated 5 years ago
- Detect and abuse risky SPNs☆262Updated 8 years ago
- Parse NTLM challenge messages over HTTP and SMB☆148Updated 2 years ago
- A HTA shell to assist with breakout assessments.☆113Updated 3 years ago
- ☆193Updated 5 years ago
- An Insider Threat Toolkit☆151Updated 6 years ago
- ☆169Updated 5 years ago
- Microsoft External Attack Tool☆179Updated 2 years ago
- Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)☆67Updated 3 years ago
- Powershell module to get the NetNTLMv2 hash of the current user☆94Updated 2 years ago
- Slides from my talk in "Hackinparis" 2019 edition☆91Updated 6 years ago
- Various Cheat Sheets☆181Updated 4 years ago
- Check if MS-RPRN is remotely available with powershell/c#☆173Updated 6 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆125Updated 6 years ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆217Updated 4 years ago