A cheatsheet of tools and commands that I use to pentest Active Directory.
☆54Mar 26, 2022Updated 4 years ago
Alternatives and similar repositories for pentesting-active-directory
Users that are interested in pentesting-active-directory are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A cheatsheet of commands used to pass the CARTP (Certified Azure Red Team Professional) exam.☆25May 4, 2023Updated 3 years ago
- Repo for malware development practices I post on my blog☆37Oct 5, 2024Updated last year
- ☆14Jul 29, 2024Updated last year
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Aug 20, 2023Updated 2 years ago
- An advanced scanner for exposed secrets in web pages, APIs, and source code.☆13Apr 22, 2025Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Mitigation validation utility for the Ivanti Connect Around attack chain. Runs multiple checks. CVE-2023-46805, CVE-2024-21887.☆12Feb 3, 2024Updated 2 years ago
- An Incredibly Annoying, Insufferable Authentication Implementation☆32Apr 17, 2024Updated 2 years ago
- This is an AD pentest tools collection☆59Jul 6, 2024Updated last year
- powerfull pentesting tool to checking email by smtp command☆10Feb 29, 2024Updated 2 years ago
- Repo for all my exploits/PoCs☆52May 6, 2025Updated last year
- A collection of pentesting resources, tools, books, and libraries.☆26Apr 27, 2015Updated 11 years ago
- ☆46Sep 20, 2024Updated last year
- This repository is for tools, guides, cheatsheets, and anything else related to learning all different aspects of security.☆107Sep 4, 2022Updated 3 years ago
- Impacket is a collection of Python classes for working with network protocols.☆13Oct 29, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A simple utility to quickly gather historic Port and CVE exposures from an IP range.☆41Nov 12, 2023Updated 2 years ago
- Exploit for CVE-2024-3273, supports single and multiple hosts☆13Apr 7, 2024Updated 2 years ago
- Cheatsheets☆19Jul 4, 2022Updated 4 years ago
- A small guide on Unknown/Orphaned SIDs and some PowerShell tools to help you get rid of them.☆21Apr 16, 2026Updated 2 months ago
- ☆13Dec 21, 2023Updated 2 years ago
- ☆35Nov 14, 2024Updated last year
- Github Search is a quite powerful and useful feature that can be used to search for sensitive data on repositories. Collection of Github …☆21Aug 11, 2024Updated last year
- Atlassian Companion RCE Vulnerability Proof of Concept☆25Dec 15, 2023Updated 2 years ago
- This repo is for the youtube video where we have explained how to make a detectable reverse shell undetectable by windows defender☆28Mar 16, 2024Updated 2 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Manage attack surface data on Elasticsearch☆27Nov 20, 2023Updated 2 years ago
- A list of all Active Directory machines from HackTheBox☆263Jun 25, 2026Updated last week
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆30Jul 21, 2024Updated last year
- CVE-2024-24919 [Check Point Security Gateway Information Disclosure]☆31Updated this week
- Notes and cheatsheets for the OffSec Wireless Professional (OSWP) certification☆51Oct 29, 2023Updated 2 years ago
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise☆134Dec 2, 2023Updated 2 years ago
- Powershell Scripts for Blue Team members☆11Dec 1, 2023Updated 2 years ago
- A Firefox Extension to track postMessage usage (url, domain and stack) both by logging using CORS and also visually as an extension-icon☆28Dec 9, 2024Updated last year
- A tool to check microsofts user real endpoint to get data about a tenant.☆16Feb 6, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆715May 22, 2026Updated last month
- Quicky serve files over http or https using flask.☆35Jan 26, 2025Updated last year
- This cheat sheet outlines common enumeration and attack methods for Windows Active Directory using PowerShell.☆634Apr 3, 2026Updated 3 months ago
- Burp extension used to snip any header from all the requests.☆24Nov 12, 2023Updated 2 years ago
- A graphical automation to monitor if backdoors/default settings are still active on the compromised machines over time.☆44Mar 8, 2024Updated 2 years ago
- A framework for identifying vulnerabilities in VS Code extensions☆19Jul 9, 2024Updated last year
- A GUI wrapper inside of Havoc to interact with bloodhound CE☆71Feb 3, 2024Updated 2 years ago