snovvcrash / KrbRelayUp
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
☆12Updated 2 years ago
Alternatives and similar repositories for KrbRelayUp:
Users that are interested in KrbRelayUp are comparing it to the libraries listed below
- Modified version of PEAS client for offensive operations☆41Updated 2 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- Convert ldapdomaindump to Bloodhound☆79Updated last year
- Port forwarding via MSRPC (445/tcp) [WIP]☆32Updated 3 years ago
- ☆24Updated 3 years ago
- ☆19Updated last year
- ☆16Updated 2 years ago
- A multithreaded, queued SSH key and/or password spraying tool.☆18Updated 2 years ago
- ☆17Updated 4 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- Perform Windows domain enumeration via LDAP☆36Updated 2 years ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆17Updated 2 years ago
- IOXIDResolver from AirBus Security/PingCastle☆50Updated 4 years ago
- Finding SSL Blindspots for Red Teams☆32Updated 4 years ago
- My BloodHound custom queries☆23Updated 2 years ago
- Python script to exploit CVE-2022-22954 and then exploit CVE-2022-22960☆2Updated 2 years ago
- Check the Domain for Local Admin Access☆13Updated 2 months ago
- Cobalt Strike profile generator using Jenkins to automate the heavy lifting☆35Updated 2 years ago
- SharpReg is a simple code set to interact with the Remote Registry service api and is compatible with Cobalt Strike.☆29Updated 5 years ago
- Active Directory ACL exploitation with BloodHound☆12Updated 3 years ago
- OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.☆91Updated 3 years ago
- ☆12Updated 5 years ago
- Execute Mimikatz with different technique☆51Updated 3 years ago
- This is a CS project that will encrypt shell code from msfvenom using AES☆22Updated 3 years ago
- Add SD for controlled computer object to a target object for RBCD using LDAP☆38Updated 3 years ago
- Microsoft Exchange password spray tool with proxy support.☆40Updated 3 years ago
- ☆32Updated 5 years ago
- Create PDFs with HTML smuggling attachments that save on opening the document.☆29Updated last year
- Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.☆21Updated 3 years ago
- Use rpc null sessions to retrieve machine list, domain admin list, domain controllers☆14Updated 2 years ago