rootSySdk / PowerGPOAbuseLinks
Powershell version of SharpGPOAbuse
☆78Updated 4 years ago
Alternatives and similar repositories for PowerGPOAbuse
Users that are interested in PowerGPOAbuse are comparing it to the libraries listed below
Sorting:
- A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY☆83Updated 3 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆137Updated last year
- ☆159Updated 6 months ago
- DCSync Attack from Outside using Impacket☆115Updated 3 years ago
- ☆226Updated last year
- ADCS cert template modification and ACL enumeration☆136Updated last year
- OPSEC safe Kerberoasting in C#☆191Updated 2 years ago
- ☆117Updated 2 months ago
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆122Updated 3 years ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆256Updated 2 years ago
- Useful Cobalt Strike Beacon Object Files (BOFs) used during red teaming and penetration testing engagements.☆112Updated 3 years ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆177Updated 2 years ago
- A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.☆129Updated last year
- Buggy script to play with GPOs☆99Updated 5 months ago
- Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations☆154Updated last year
- PoC to coerce authentication from Windows hosts using MS-WSP☆236Updated last year
- Use ESC1 to perform a makeshift DCSync and dump hashes☆209Updated last year
- C# version of Powermad☆166Updated last year
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆57Updated 5 years ago
- Simple C# implementation of PowerUpSQL☆95Updated 10 months ago
- Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…☆100Updated 3 years ago
- ☆87Updated 2 years ago
- ☆203Updated last year
- An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…☆135Updated 2 years ago
- ☆151Updated 3 months ago
- POC tools for exploring SMB over QUIC protocol☆125Updated 3 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆91Updated last year
- GolenGMSA tool for working with GMSA passwords☆150Updated last year
- Proof-of-concept tools for my AD Forest trust research☆213Updated 11 months ago
- Useful Cobalt Strike BOFs found or used during engagements☆140Updated last year