snovvcrash / KrbRelayUpView external linksLinks
KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).
☆14Jul 29, 2022Updated 3 years ago
Alternatives and similar repositories for KrbRelayUp
Users that are interested in KrbRelayUp are comparing it to the libraries listed below
Sorting:
- Impacket is a collection of Python classes for working with network protocols.☆12Nov 11, 2023Updated 2 years ago
- A multithreaded, queued SSH key and/or password spraying tool.☆20Jan 5, 2023Updated 3 years ago
- ☆16May 20, 2022Updated 3 years ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆19Aug 5, 2022Updated 3 years ago
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆13Jul 16, 2025Updated 6 months ago
- Active Directory ACL exploitation with BloodHound☆14May 18, 2021Updated 4 years ago
- A swiss army knife for pentesting networks☆26Sep 3, 2022Updated 3 years ago
- Cisco CallManager User Enumeration☆15Aug 16, 2022Updated 3 years ago
- A havoc UI python module to help in reporting and vulnerabilities to exploit on an internal network.☆14Oct 31, 2023Updated 2 years ago
- Repository for dirty scripts and PoCs☆20Feb 18, 2025Updated 11 months ago
- Collection of extra pentest tools for Kali Linux☆113Sep 18, 2025Updated 4 months ago
- CVE-2024-22274: Authenticated Remote Code Execution in VMware vCenter Server☆38Jul 6, 2024Updated last year
- Deathstar is an Empire plugin that automates gaining Domain and/or Enterprise Admin rights in Active Directory environments using common …☆20Mar 24, 2025Updated 10 months ago
- replace the shellcode chatacters so that reduce the entropy☆18Sep 14, 2023Updated 2 years ago
- Information Gathering & WebSite ReConnaissance.☆24Feb 8, 2018Updated 8 years ago
- A Python-based tool for analyzing Active Directory security posture by processing LDAP dumps, NTDS.dit extracts, and password cracking re…☆25May 6, 2025Updated 9 months ago
- ☆60Jan 9, 2023Updated 3 years ago
- a port of privkit bof for havoc☆23Dec 8, 2023Updated 2 years ago
- PoC MSI payload based on ASEC/AhnLab's blog post☆25Sep 19, 2022Updated 3 years ago
- ☆18Dec 12, 2020Updated 5 years ago
- Monitor changes in Active Directory with replication metadata☆91Jul 9, 2024Updated last year
- My dotfiles for Linux boxes☆58Jan 14, 2026Updated 3 weeks ago
- Secretsdump C# version only supporting local (live) operation☆55Apr 20, 2025Updated 9 months ago
- Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap☆36Oct 7, 2021Updated 4 years ago
- This is a Python tool is used to generate username wordlist for bruteforcing or gussing..................☆27Oct 25, 2021Updated 4 years ago
- This project is an EDRSandblast fork, adding some features and custom pieces of code.☆25Sep 29, 2023Updated 2 years ago
- Reverse-HTTP Redirector via DigitalOcean Apps Platform☆31Aug 16, 2023Updated 2 years ago
- All about CVE-2022-30190, aka follina, that is a RCE vulnerability that affects Microsoft Support Diagnostic Tools (MSDT) on Office apps …☆22Aug 6, 2022Updated 3 years ago
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆29Mar 26, 2022Updated 3 years ago
- async parser for JET☆25Nov 14, 2025Updated 2 months ago
- Impacket is a collection of Python classes for working with network protocols.☆31Jun 27, 2024Updated last year
- My implementation of the GIUDA project in C++☆189Jul 25, 2023Updated 2 years ago
- In case you didn't now how to restore the user password after a password reset (get the previous hash with DCSync)☆169Jun 8, 2017Updated 8 years ago
- ☆43Jul 17, 2025Updated 6 months ago
- Scripts permettant de contourner la protection antivirale de Windows Defender via la technique de Direct Syscalls avec une injection de s…☆30Oct 14, 2022Updated 3 years ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆81Jun 1, 2022Updated 3 years ago
- Shellcode antivirus evasion framework☆27Jan 16, 2021Updated 5 years ago
- Reverse TCP Powershell has never been this paranoid. (basically an Opsec-safe reverse powershell)☆30Feb 4, 2022Updated 4 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Nov 12, 2022Updated 3 years ago