puzzlepeaches / NTLMReconLinks
Enumerate information from NTLM authentication enabled web endpoints π
β34Updated 2 years ago
Alternatives and similar repositories for NTLMRecon
Users that are interested in NTLMRecon are comparing it to the libraries listed below
Sorting:
- TokenCertβ100Updated 11 months ago
- Lateral Movementβ124Updated last year
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analysβ¦β86Updated last month
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.β74Updated last year
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.β74Updated 2 years ago
- Copy metadata and digital signatures information from one Windows executable to another using Wine on a non-Windows platformβ18Updated last year
- Click Once + App Domainβ64Updated last year
- Lateral Movement via the .NET Profilerβ84Updated 11 months ago
- β34Updated 7 months ago
- SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your aβ¦β75Updated last year
- This technique leverages PowerShell'sΒ .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typβ¦β51Updated 5 months ago
- Tool to bypass LSA Protection (aka Protected Process Light)β58Updated 9 months ago
- Modified versions of the Cobalt Strike Process Injection Kitβ102Updated last year
- Extract registry and NTDS secrets from local or remote disk imagesβ43Updated 7 months ago
- β83Updated last year
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCSβ150Updated 8 months ago
- Decrypt Veeam database passwordsβ160Updated last year
- C# version of NTLMRawUnHideβ72Updated 3 years ago
- SAM Dumping in C#β54Updated 9 months ago
- β57Updated 8 months ago
- β109Updated 8 months ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3β78Updated 3 years ago
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.β82Updated last year
- Dump processes over WMI with MSFT_MTProcessβ75Updated last month
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDRβ75Updated last year
- SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate tβ¦β49Updated 3 months ago
- DFSCoerce exe revisited version with custom authenticationβ40Updated last year
- β52Updated 8 months ago
- Python tool to interact with WMI StdRegProvβ61Updated 11 months ago
- Secretsdump C# version only supporting local (live) operationβ51Updated 6 months ago