snovvcrash / KrbRelayUpLinks
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
☆14Updated 3 years ago
Alternatives and similar repositories for KrbRelayUp
Users that are interested in KrbRelayUp are comparing it to the libraries listed below
Sorting:
- Modified version of PEAS client for offensive operations☆43Updated 2 years ago
- A multithreaded, queued SSH key and/or password spraying tool.☆20Updated 2 years ago
- Cobalt Strike profile generator using Jenkins to automate the heavy lifting☆38Updated 2 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆91Updated 3 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 3 years ago
- Port forwarding via MSRPC (445/tcp) [WIP]☆33Updated 4 years ago
- Notification webhook for GoPhish☆57Updated last year
- ☆16Updated 3 years ago
- ☆18Updated 4 years ago
- ☆22Updated 2 years ago
- Perform Windows domain enumeration via LDAP☆37Updated 3 years ago
- Analyzing AD domains for security risks related to user accounts☆64Updated 3 years ago
- RedDrop is a quick and easy web server for capturing and processing encoded and encrypted payloads and tar archives.☆57Updated 11 months ago
- Microsoft Exchange password spray tool with proxy support.☆39Updated 4 years ago
- Finding SSL Blindspots for Red Teams☆34Updated 5 years ago
- ☆14Updated 3 years ago
- Use rpc null sessions to retrieve machine list, domain admin list, domain controllers☆14Updated 2 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆42Updated 8 months ago
- Azure pentesting reference for Altered Security Lab☆24Updated 3 years ago
- Federated Office365 user enumeration based on correlated response trend analysis☆52Updated 3 years ago
- Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.☆21Updated 4 years ago
- Convert ldapdomaindump to Bloodhound☆80Updated last year
- A C# program featuring an all-in-one bypass for CLM, AppLocker and AMSI using Runspace.☆21Updated 3 years ago
- A tool for performing light brute-forcing of HTTP servers to identify commonly accessible NTLM authentication endpoints.☆99Updated 2 years ago
- Poc script for ProxyShell exploit chain in Exchange Server☆23Updated 3 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 3 years ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆19Updated 3 years ago
- ☆20Updated last year
- miscellaneous sploit scripts/hacks☆18Updated 10 months ago
- ☆33Updated 5 years ago