superhac / OSEP

Related projects ⓘ

Alternatives and complementary repositories for OSEP

• fozavci / TradecraftDevelopment-Fundamentals
  Tradecraft Development Fundamentals
  ☆40Updated 3 years ago
• ropbear / CLMBypass
  Bypass Constrained Language Mode in PowerShell
  ☆27Updated 5 years ago
• 0xe7 / RoastInTheMiddle
  ☆68Updated last year
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆53Updated 2 years ago
• bmdyy / osed_prep
  A collection of Windows x32 exploits created while preparing for the OSED certification exam
  ☆20Updated 3 years ago
• NinjaStyle82 / rbcd_permissions
  Add SD for controlled computer object to a target object for RBCD using LDAP
  ☆38Updated 3 years ago
• AlteredSecurity / RBCD
  Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.
  ☆20Updated 3 years ago
• Acceis / bqm
  Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.
  ☆36Updated 7 months ago
• snovvcrash / OffensivePipeline
  OffensivePipeline allows to download, compile (without Visual Studio) and obfuscate C# tools for Red Team exercises.
  ☆90Updated 2 years ago
• Wh04m1001 / Random
  Random
  ☆32Updated last year
• RiccardoAncarani / GPOPowerParser
  A script that parses PowerView's output for GPO analysis. Integrated into bloodhound to find misconfigurations of URA, SMB signing etc
  ☆12Updated 4 years ago
• Diefunction / ZabbixAPIAbuse
  Abuse Zabbix API to obtain Remote Command Execution on hosts
  ☆17Updated 3 years ago
• RedSiege / What-The-F
  This repo hosts a poc of how to execute F# code within an unmanaged process
  ☆65Updated 4 months ago
• ohoph / 3bowla
  Python3 Ebowla... 3Bowla
  ☆17Updated 4 years ago
• knavesec / o365fedenum
  Federated Office365 user enumeration based on correlated response trend analysis
  ☆47Updated 2 years ago
• MiSERYYYYY / pentesting-cheatsheet
  ☆9Updated 2 weeks ago
• icyguider / PowerChunker
  Bypass AMSI via PowerShell by splitting a file into multiple chunks
  ☆49Updated 3 years ago
• SySS-Research / ldif2bloodhound
  Convert an LDIF file to JSON files ingestible by BloodHound
  ☆40Updated 2 months ago
• csandker / pxethiefy
  ☆36Updated last month
• 0xS2V2 / marsform
  terraform deployment for red team
  ☆21Updated last year
• morRubin / NegoExRelay
  ☆83Updated 2 years ago
• FatCyclone / D-Pwn
  D/Invoke standalone shellcode runners
  ☆37Updated 11 months ago
• jfmaes / CSharpReflectionWorkshop
  The repository that complements the From zero to hero: creating a reflective loader in C# workshop
  ☆38Updated 3 years ago
• Sh11td0wn / winrm_kerb_shell
  Ruby script that calls an almost interactive shell via WinRM (TCP/5985) on an Windows machine, relaying on a valid Kerberos ticket. (Very…
  ☆16Updated 5 years ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• 0xe7 / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆41Updated last month
• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆35Updated 2 months ago
• Pascal-0x90 / sideloadr
  Small Python tool to do DLL Sideloading (and consequently, other DLL attacks).
  ☆53Updated 2 years ago
• ZeroPointSecurity / Domain-Enumeration-Tool
  Perform Windows domain enumeration via LDAP
  ☆36Updated 2 years ago