slemire / WSPCoerceLinks
PoC to coerce authentication from Windows hosts using MS-WSP
☆294Updated 2 years ago
Alternatives and similar repositories for WSPCoerce
Users that are interested in WSPCoerce are comparing it to the libraries listed below
Sorting:
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆258Updated 2 years ago
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆278Updated 4 years ago
- Attempt at Obfuscated version of SharpCollection☆222Updated this week
- Recovering NTLM hashes from Credential Guard☆349Updated 2 years ago
- ADCS cert template modification and ACL enumeration☆143Updated 2 years ago
- ☆213Updated last year
- OPSEC safe Kerberoasting in C#☆192Updated 3 years ago
- Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin pr…☆238Updated 2 years ago
- ☆231Updated last year
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆364Updated last year
- MS-FSRVP coercion abuse PoC☆300Updated 3 years ago
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆332Updated 11 months ago
- Use ESC1 to perform a makeshift DCSync and dump hashes☆209Updated last year
- ☆156Updated 8 months ago
- Python implementation for PetitPotam☆214Updated 4 years ago
- A collection of code snippets built to assist with breaking chains.☆123Updated last year
- My implementation of the GIUDA project in C++☆187Updated 2 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆140Updated last year
- Extracting NetNTLM without touching lsass.exe☆239Updated last year
- A PoC that combines AutodialDLL lateral movement technique and SSP to scrape NTLM hashes from LSASS process.☆300Updated 2 years ago
- ☆170Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆296Updated 3 months ago
- Patch AMSI and ETW☆246Updated last year
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆328Updated 11 months ago
- ☆222Updated 2 years ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆175Updated 2 years ago
- A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks☆175Updated 2 months ago
- ☆195Updated last month
- Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking☆357Updated 3 months ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆124Updated 2 years ago