puzzlepeaches / NTLMReconLinks
Enumerate information from NTLM authentication enabled web endpoints 🔎
☆34Updated last year
Alternatives and similar repositories for NTLMRecon
Users that are interested in NTLMRecon are comparing it to the libraries listed below
Sorting:
- Modified versions of the Cobalt Strike Process Injection Kit☆95Updated last year
- Click Once + App Domain☆62Updated last year
- C# version of NTLMRawUnHide☆72Updated 2 years ago
- DFSCoerce exe revisited version with custom authentication☆40Updated last year
- SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your a…☆74Updated last year
- SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.☆70Updated last year
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆74Updated 2 years ago
- SAM Dumping in C#☆48Updated 5 months ago
- Lateral Movement via the .NET Profiler☆82Updated 7 months ago
- Cobalt Strike BOF for quser.exe implementation using Windows API☆86Updated 2 years ago
- Tool to bypass LSA Protection (aka Protected Process Light)☆54Updated 5 months ago
- TokenCert☆98Updated 7 months ago
- Windows Persistence Toolkit in C#☆36Updated 2 years ago
- Extract registry and NTDS secrets from local or remote disk images☆43Updated 3 months ago
- A care package of useful bofs for red team engagments☆55Updated 6 months ago
- Secretsdump C# version only supporting local (live) operation☆49Updated 2 months ago
- This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…☆43Updated last month
- ☆97Updated 9 months ago
- Lsass dumper evading (some) EDR detection☆24Updated 4 months ago
- Aggressor script add-in for CobaltStrike to track file uploads☆36Updated 2 years ago
- C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…☆40Updated last year
- ☆41Updated 11 months ago
- Office 365 and Exchange Enumeration Version 2☆18Updated last year
- Reasonably undetected shellcode stager and executer.☆37Updated last month
- BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR☆76Updated last year
- Tool to aid in dumping LSASS process remotely☆40Updated 10 months ago
- Copy metadata and digital signatures information from one Windows executable to another using Wine on a non-Windows platform☆17Updated last year
- Parses Cobalt Strike malleable C2 profiles.☆57Updated last week
- ☆26Updated 7 months ago
- ☆55Updated 4 months ago