shellster / DCSYNCMonitorLinks
Monitors for DCSYNC and DCSHADOW attacks and create custom Windows Events for these events.
☆139Updated 7 years ago
Alternatives and similar repositories for DCSYNCMonitor
Users that are interested in DCSYNCMonitor are comparing it to the libraries listed below
Sorting:
- PowerAvails is a unit of collection of Powershell modules that help you get done many things☆119Updated 6 years ago
- Liniaal - A communication extension to Ruler☆97Updated 6 years ago
- Python script for analyis of the "Trust.csv" file generated by Veil PowerView. Provides graph based analysis and output.☆121Updated 4 years ago
- ☆73Updated 7 years ago
- Powershell module to assist in attacking Exchange/Outlook Web Access☆181Updated 8 years ago
- a simple portforwarder in ps1 with embeded c# code☆90Updated 6 years ago
- Active Directory enumeration from non-domain system.☆118Updated 8 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆170Updated 3 months ago
- POC Highlighting Obfuscation Techniques used by FIN threat actors based on cmd.exe's replace functionality and cmd.exe/powershell.exe's s…☆104Updated 7 years ago
- CScriptShell, a Powershell Host running within cscript.exe☆160Updated 8 years ago
- ☆164Updated 9 years ago
- ☆83Updated 9 years ago
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆167Updated 7 years ago
- A Powershell implementation of PrivExchange designed to run under the current user's context☆125Updated 6 years ago
- ☆58Updated 7 years ago
- This project is just a dumping ground for random scripts I've developed.☆139Updated 9 months ago
- Aggregation of Cobalt Strike's aggressor scripts.☆143Updated 7 years ago
- A collection of files for adding and leveraging custom properties in BloodHound.☆183Updated 5 years ago
- Collection of scripts for interacting with AD Kerberos from Linux☆74Updated 7 years ago
- The PowerThIEf, an Internet Explorer Post Exploitation library☆131Updated 3 months ago
- All the Power with no Shell☆36Updated 3 years ago
- Splunk Dashboard for CobaltStrike logs☆89Updated 4 years ago
- Cobalt Strike SCT payload obfuscator☆143Updated 7 years ago
- Conveigh is a Windows PowerShell LLMNR/NBNS spoofer detection tool☆97Updated 8 years ago
- Generates anti-sandbox analysis HTA files without payloads☆119Updated 8 years ago
- Simple C# for checking for the existence of credential files related to AWS, Microsoft Azure, and Google Compute.☆170Updated 6 years ago
- A WebDAV PROPFIND C2 tool☆119Updated 5 years ago
- Slides and reference material from Evading Autoruns presentation at DerbyCon 7 (September 2017)☆104Updated 4 years ago
- Pypykatz agent implemented in .NET☆86Updated 6 years ago
- SharpBox is a C# tool for compressing, encrypting, and exfiltrating data to DropBox using the DropBox API.☆110Updated 4 years ago