sensepost / mail-in-the-middle
β103Updated 2 weeks ago
Related projects β
Alternatives and complementary repositories for mail-in-the-middle
- Active Directory data ingestor for BloodHound Community Edition written in Rust. π¦β104Updated last month
- A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.β94Updated 5 months ago
- β143Updated 8 months ago
- RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create advβ¦β91Updated last week
- Automated exploitation of MSSQL servers at scaleβ82Updated this week
- Continuous password spraying toolβ117Updated this week
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Adminβ166Updated last year
- Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.�β78Updated 2 months ago
- β112Updated last year
- PowerShell Reverse Shellβ61Updated last year
- Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the wβ¦β88Updated last year
- Enumerate valid users within Microsoft Teams and OneDrive with clean output.β58Updated last month
- A collection of tools Neil and Andy have been working on released in one place and interlinked with previous toolsβ85Updated last year
- ACL abuse swiss-knifeβ117Updated last year
- Scraping Kit is made up of several tools for scraping services for keywords, useful for initial enumeration of Domain Controllers or if yβ¦β96Updated last year
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movementβ108Updated last month
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinelβ147Updated 3 weeks ago
- A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.β74Updated 5 months ago
- A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.β35Updated 8 months ago
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop appsβ133Updated 4 months ago
- Lateral Movementβ119Updated last year
- Inject RDPThief into memory with PowerShell.β55Updated last month
- A collection of Cobalt Strike Aggressor scripts.β85Updated 2 years ago
- Abuse Azure API permissions for red teamingβ58Updated last year
- ShuckNT is the script of Shuck.sh online service for on-premise use. It is design to dowgrade, convert, dissect and shuck authentication β¦β64Updated last month
- A Python POC for CRED1 over SOCKS5β134Updated last month
- linikatz is a tool to attack AD on UNIXβ138Updated last year
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snafflerβ88Updated 3 weeks ago
- Slinky Cat attempts to give users an easy-to-navigate menu offering predefined Active Directory Service Interfaces (ADSI) and .NET querieβ¦β79Updated last year
- Living off the land searches for explorer and sharepointβ53Updated 3 weeks ago