preempt / ntlm-scanner
A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities
☆203Updated 4 years ago
Alternatives and similar repositories for ntlm-scanner:
Users that are interested in ntlm-scanner are comparing it to the libraries listed below
- Domain user enumeration tool☆215Updated last year
- lateral movement techniques that can be used during red team exercises☆269Updated 5 years ago
- Powershell module to get the NetNTLMv2 hash of the current user☆93Updated 2 years ago
- An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.☆303Updated 2 years ago
- Some .ps1 scripts for pentesting☆130Updated 4 years ago
- Tool that automates Active Directory enumeration☆89Updated 3 years ago
- Fileless lateral movement tool that relies on ChangeServiceConfigA to run command☆106Updated 5 years ago
- Office 365 and Exchange Enumeration☆184Updated 5 years ago
- An Insider Threat Toolkit☆149Updated 6 years ago
- Microsoft External Attack Tool☆178Updated 2 years ago
- Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…☆166Updated 4 years ago
- A curated list of awesome BloodhoundAD resources☆231Updated 2 years ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆215Updated 4 years ago
- Check if MS-RPRN is remotely available with powershell/c#☆172Updated 6 years ago
- ☆167Updated 5 years ago
- Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.☆200Updated 6 years ago
- ☆190Updated 4 years ago
- Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)☆65Updated 3 years ago
- ☆257Updated 2 years ago
- This Repository contains the stuff related to windows Active directory environment exploitation☆147Updated last year
- Parse NTLM challenge messages over HTTP and SMB☆144Updated 2 years ago
- Check-LocalAdminHash is a PowerShell tool that attempts to authenticate to multiple hosts over either WMI or SMB using a password hash to…☆177Updated last year
- ☆128Updated last year
- The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification☆376Updated 5 years ago
- Recon-AD, an AD recon tool based on ADSI and reflective DLL’s☆322Updated 5 years ago
- Automated, extensible toolset that runs cypher queries against Bloodhound's Neo4j backend and saves output to spreadsheets.☆252Updated 3 years ago
- Slides from my talk in "Hackinparis" 2019 edition☆91Updated 5 years ago
- ☆139Updated 5 years ago
- Tool for assessing on-premises Microsoft servers authentication such as ADFS, Skype, Exchange, and RDWeb☆145Updated 4 years ago
- Fake User Generator for Active Directory Environments☆157Updated 6 years ago