swisskyrepo / SharpLAPS
Retrieve LAPS password from LDAP
☆408Updated 4 years ago
Alternatives and similar repositories for SharpLAPS:
Users that are interested in SharpLAPS are comparing it to the libraries listed below
- A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…☆459Updated 2 years ago
- Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket☆530Updated 2 years ago
- AD Enum is a pentesting tool that allows to find misconfiguration through the the protocol LDAP and exploit some of those weaknesses with…☆299Updated last year
- Enumerate Domain Data☆326Updated last year
- Password spraying and bruteforcing tool for Active Directory Domain Services☆366Updated 5 months ago
- scan for NTLM directories☆359Updated 9 months ago
- WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations☆356Updated 4 years ago
- Password spraying tool and Bloodhound integration☆231Updated 3 months ago
- Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)☆275Updated 3 years ago
- Dumping LAPS from Python☆267Updated 2 years ago
- Maximizing BloodHound. Max is a good boy.☆513Updated 2 months ago
- ☆380Updated 3 years ago
- A User Impersonation tool - via Token or Shellcode injection☆413Updated 2 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆232Updated 3 years ago
- Lists who can read any gMSA password blobs and parses them if the current user has access.☆274Updated last year
- Partial python implementation of SharpGPOAbuse☆418Updated last year
- Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration feature…☆290Updated 2 years ago
- Python3 script to quickly get various information from a domain controller through his LDAP service.☆216Updated 4 months ago
- Python version of the C# tool for "Shadow Credentials" attacks☆714Updated this week
- A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.☆719Updated 3 months ago
- ADCS abuser☆278Updated 2 years ago
- A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.☆436Updated 3 years ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆761Updated last year
- Kerberoast with ACL abuse capabilities☆448Updated 4 months ago
- Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…☆216Updated 4 years ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆388Updated last year
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆383Updated last month
- Standalone implementation of a part of the WSUS spec. Built for offensive security purposes.☆303Updated 2 years ago
- Inject remote template link into word document for remote template injection☆173Updated 4 years ago
- ☆518Updated 3 years ago