ricardojoserf / OSED-prep
Exploits written while preparing for the OSED exam
☆17Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for OSED-prep
- A collection of Windows x32 exploits created while preparing for the OSED certification exam☆19Updated 3 years ago
- Brute Ratel LDAP filtering and sorting tool. Easily take BR log output and pull hostnames for ease of use with other red team tooling. Su…☆37Updated 11 months ago
- ☆46Updated last year
- ☆29Updated 2 years ago
- A script that parses PowerView's output for GPO analysis. Integrated into bloodhound to find misconfigurations of URA, SMB signing etc☆12Updated 4 years ago
- Slides for the talk we presented as UniPi at DefCon's Red Team Village☆23Updated 2 years ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated 5 months ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆33Updated last month
- in-process powershell runner for BRC4☆37Updated last year
- A simple to use single-include Windows API resolver☆17Updated 4 months ago
- ☆68Updated last year
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆31Updated 5 months ago
- freeBokuLoader fork which targets and frees Metsrv's initial reflective DLL package☆34Updated last year
- ☆27Updated 5 months ago
- Bypassing Amsi using LdrLoadDll☆22Updated 3 weeks ago
- A proof-of-concept shellcode loader that leverages AI/ML face recognition models to verify the identity of a user on a target system☆30Updated last week
- Python3 rewrite of AsOutsider features of AADInternals☆36Updated 2 months ago
- Items related to the RedELK workshop given at security conferences☆27Updated last year
- ☆47Updated last year
- PoC for CVE-2023-36802 Microsoft Kernel Streaming Service Proxy☆35Updated last year
- A vSphere deployment of GOADv2 BETA Testing (v0.1)☆26Updated 10 months ago
- Password spraying tool for Microsoft Online accounts (Entra/Azure/O365)☆27Updated 7 months ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- Beacon Object Files (BOF) for Cobalt Strike.☆28Updated 2 months ago
- ☆15Updated last year
- POC for unauthenticated RCE in Aspect Unified Installation Assistant by Aspect Software found in 2021.☆12Updated last year
- ☆43Updated 4 months ago
- Create PDFs with HTML smuggling attachments that save on opening the document.☆27Updated last year
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago