pwnfoo / NTLMRecon
Enumerate information from NTLM authentication enabled web endpoints π
β465Updated 4 months ago
Related projects β
Alternatives and complementary repositories for NTLMRecon
- scan for NTLM directoriesβ346Updated 4 months ago
- scavenger : is a multi-threaded post-exploitation scanning tool for scavenging systems, finding most frequently used files and folders aβ¦β329Updated 5 years ago
- Disposable and resilient red team infrastructure with Terraformβ252Updated 5 years ago
- Kerberoast attack -pure python-β419Updated 11 months ago
- A Network Enumeration and Attack Toolset for Windows Active Directory Environments.β244Updated 4 months ago
- RACE is a PowerShell module for executing ACL attacks against Windows targets.β210Updated last year
- Active Directory ACL exploitation with BloodHoundβ701Updated 2 years ago
- Enumerate valid usernames from Office 365 using ActiveSync, Autodiscover v1, or office.com login page.β242Updated 6 months ago
- Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)β61Updated 2 years ago
- Local privilege escalation, or remote code execution, through Splunk Universal Forwarder (UF) misconfigurationsβ244Updated 2 years ago
- PowerSploit - A PowerShell Post-Exploitation Frameworkβ216Updated 2 years ago
- LDAP library for auditing MS ADβ365Updated 2 months ago
- Network Pivoting Toolkitβ435Updated last year
- A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.β424Updated 2 years ago
- Obfuscate powershell scripts by replacing Function names, Variables and Parameters.β510Updated last year
- Red Team C2 Infrastructure built in AWS using Ansible!β219Updated 4 years ago
- Chameleon: A tool for evading Proxy categorisationβ459Updated 2 years ago
- This is a weaponized WSUS exploitβ281Updated last year
- Python script that performs email address validation against Office 365 without submitting login attempts.β323Updated 4 years ago
- Password spraying tool and Bloodhound integrationβ212Updated last year
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure callsβ¦β215Updated 4 years ago
- Automating juicy potato local privilege escalation exploit for penetration testersβ138Updated 3 years ago
- NTLMv1 Multitoolβ588Updated last month
- β511Updated 2 years ago
- WSuspicious - A tool to abuse insecure WSUS connections for privilege escalationsβ346Updated 4 years ago
- linikatz is a tool to attack AD on UNIXβ526Updated last year
- β147Updated last year
- Rapid Attack Infrastructure (RAI)β296Updated 3 years ago
- Office 365 and Exchange Enumerationβ181Updated 5 years ago
- Utility to enumerate users, groups and computers from a Windows domain through LDAP queriesβ348Updated 3 years ago