secure-77 / Certipy-Docker

Related projects ⓘ

Alternatives and complementary repositories for Certipy-Docker

• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆53Updated 2 years ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆47Updated last year
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆42Updated 2 years ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆66Updated last year
• n0tspam / RunspaceLoader
  Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe
  ☆13Updated 11 months ago
• d3lb3 / KeePass-the-Hash
  A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…
  ☆31Updated 2 years ago
• NVISOsecurity / cs2br-bof
  ☆59Updated 4 months ago
• OtterHacker / Cerbere
  ☆46Updated last year
• xct / adopt
  Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.
  ☆13Updated 2 years ago
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 2 years ago
• ChoiSG / bin2sideload
  ☆10Updated last year
• MrAle98 / psinline
  in-process powershell runner for BRC4
  ☆37Updated last year
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated 5 months ago
• rasta-mouse / SpawnWith
  ☆92Updated 9 months ago
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆88Updated 10 months ago
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆25Updated last year
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆50Updated last year
• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆34Updated last month
• puzzlepeaches / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆35Updated last year
• EspressoCake / DefenderPathExclusions
  Creation and removal of Defender path exclusions and exceptions in C#.
  ☆30Updated last year
• 0xsp-SRD / 0xsp.com
  a variety of tools,scripts and techniques developed and shared with different programming languages by 0xsp Lab
  ☆53Updated 7 months ago
• Yair-Men / Passenger
  ProcExp Driver (Ab)use
  ☆20Updated last year
• LaresLLC / SuperSharpShares
  SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your a…
  ☆64Updated 6 months ago
• waawaa / AMSI_Rubeus_bypass
  ☆61Updated 2 years ago
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆76Updated this week
• h4wkst3r / SharPersist
  Windows Persistence Toolkit in C#
  ☆33Updated 2 years ago
• two06 / CerealKiller
  .NET deserialization hunter
  ☆73Updated 4 months ago
• Tarakhs / ToyingWithHellsGate
  Brief writeup of post exploitation methodologies.
  ☆17Updated last year