sosdave / KeyTabExtract

Related projects: ⓘ

• micahvandeusen / gMSADumper
  Lists who can read any gMSA password blobs and parses them if the current user has access.
  ☆236Updated 7 months ago
• 0xjpuff / reverse_shell_splunk
  A simple splunk package for obtaining reverse shells on both Windows and most *nix systems.
  ☆55Updated 6 years ago
• n00py / LAPSDumper
  Dumping LAPS from Python
  ☆251Updated last year
• ShutdownRepo / targetedKerberoast
  Kerberoast with ACL abuse capabilities
  ☆306Updated last month
• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆299Updated last year
• ivanitlearning / Juicy-Potato-x86
  Juicy Potato for x86 Windows
  ☆116Updated 4 years ago
• wavestone-cdt / powerpxe
  Powershell script to extract information from boot PXE
  ☆130Updated 5 years ago
• xpn / Powershell-PostExploitation
  Scripts created to help with post exploitation of a Windows host
  ☆95Updated 3 years ago
• PShlyundin / ldap_shell
  AD ACL abuse
  ☆241Updated 2 months ago
• Hackndo / sprayhound
  Password spraying tool and Bloodhound integration
  ☆203Updated last year
• mpgn / BackupOperatorToDA
  From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
  ☆391Updated last year
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆163Updated 2 years ago
• zer1t0 / certi
  ADCS abuser
  ☆244Updated last year
• dirkjanm / PKINITtools
  Tools for Kerberos PKINIT and relaying to AD CS
  ☆607Updated 5 months ago
• xct / hashgrab
  generate payloads that force authentication against an attacker machine
  ☆85Updated last year
• giuliano108 / SeBackupPrivilege
  Use SE_BACKUP_NAME/SeBackupPrivilege to access objects you shouldn't have access to
  ☆271Updated 11 years ago
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆217Updated last year
• AlmondOffSec / PassTheCert
  Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆534Updated 2 months ago
• rvazarkar / GMSAPasswordReader
  ☆189Updated last year
• ly4k / PetitPotam
  Python implementation for PetitPotam
  ☆179Updated 2 years ago
• Hackndo / pyGPOAbuse
  Partial python implementation of SharpGPOAbuse
  ☆346Updated 7 months ago
• ZeroDayLab / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆215Updated 2 years ago
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆247Updated 3 years ago
• borjmz / aspx-reverse-shell
  Aspx reverse shell
  ☆92Updated 4 years ago
• latortuga71 / TortugaToolKit
  Collection of some of my own tools with other great open source tools out there packaged into a powershell module
  ☆140Updated 2 years ago
• calebstewart / bypass-clm
  PowerShell Constrained Language Mode Bypass
  ☆221Updated 3 years ago
• CsEnox / EventViewer-UACBypass
  🍊 Orange Tsai EventViewer RCE
  ☆166Updated 2 years ago
• Re4son / Churrasco
  Changes for Visual Studio 2013
  ☆112Updated 9 years ago
• ly4k / BloodHound
  Fork of BloodHound with PKI nodes and edges for Certipy along with some minor personal improvements
  ☆123Updated 2 years ago
• kaluche / bloodhound-quickwin
  Simple script to extract useful informations from the combo BloodHound + Neo4j
  ☆190Updated 9 months ago