sho-luv / zerologonLinks
Zerologon Check and Exploit - Discovered by Tom Tervoort of Secura and expanded on @Dirkjanm's cve-2020-1472 coded example. This tool will check, exploit and restore password to original state
☆18Updated 3 years ago
Alternatives and similar repositories for zerologon
Users that are interested in zerologon are comparing it to the libraries listed below
Sorting:
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆93Updated last year
- Bypass AMSI via PowerShell by splitting a file into multiple chunks☆53Updated 4 years ago
- Binary and CrackMapExec module to impersonate tokens on a windows machine☆44Updated 3 years ago
- The ldapconsole script allows you to perform custom LDAP requests to a Windows domain.☆64Updated 5 months ago
- load dumped csharp binaries as assemblies and launch them in memory☆27Updated last year
- PowerSploit - A PowerShell Post-Exploitation Framework☆42Updated 4 months ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆56Updated 3 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆91Updated 3 years ago
- Secretsdump C# version only supporting local (live) operation☆50Updated 3 months ago
- Golang search engine scraper intended for identification of published ClickOnce deployments☆79Updated 8 months ago
- Simple PoC Python agent to showcase Havoc C2's custom agent interface. Not operationally safe or stable. Released with accompanying blog …☆82Updated last year
- ☆72Updated last month
- POC for Veeam Backup and Replication CVE-2023-27532☆63Updated 2 years ago
- Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…☆104Updated 3 years ago
- PrintNightmare (CVE-2021-34527) PoC Exploit☆113Updated 2 years ago
- Add SD for controlled computer object to a target object for RBCD using LDAP☆38Updated 3 years ago
- Convert ldapdomaindump to Bloodhound☆81Updated last year
- ☆126Updated 2 years ago
- ☆47Updated 3 years ago
- ☆93Updated 2 years ago
- Get Fine Grained Password Policy☆72Updated 3 months ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.☆95Updated last year
- Create a lnk shortcut file for Windows☆19Updated 6 years ago
- A small tool to convert Base64-encoded .kirbi tickets from Rubeus into .ccache files for Impacket☆62Updated 5 years ago
- Tool for efficient directory enumeration☆56Updated 9 months ago
- Automating payload generation for OSEP labs and exam.☆34Updated 3 years ago
- A C# program featuring an all-in-one bypass for CLM, AppLocker and AMSI using Runspace.☆19Updated 2 years ago
- ☆123Updated last year
- PoC for CVE-2021-36934, which enables a standard user to be able to retrieve the SAM, Security, and Software Registry hives in Windows 10…☆35Updated 2 years ago