synacktiv / Invoke-RunAsWithCertLinks
A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
☆163Updated last year
Alternatives and similar repositories for Invoke-RunAsWithCert
Users that are interested in Invoke-RunAsWithCert are comparing it to the libraries listed below
Sorting:
- ☆162Updated 10 months ago
- A Python POC for CRED1 over SOCKS5☆161Updated last year
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆118Updated last year
- ☆214Updated last year
- pysnaffler☆106Updated 3 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆176Updated last month
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)☆204Updated last year
- ☆229Updated last year
- Hybrid AD utilities for ROADtools☆98Updated 6 months ago
- PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads☆226Updated last month
- Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…☆266Updated 11 months ago
- A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure…☆49Updated 4 months ago
- SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆152Updated 4 months ago
- A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …☆33Updated 2 months ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆189Updated 2 years ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆153Updated last month
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆143Updated last year
- Weaponizing DCOM for NTLM Authentication Coercions☆274Updated 5 months ago
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆250Updated 2 weeks ago
- BloodHound PowerShell client☆74Updated 2 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆209Updated last year
- The DCERPC only printerbug.py version☆179Updated last month
- Easy to use, open-source infrastructure management platform, crafted specifically for red team engagements.☆105Updated last week
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it☆127Updated 3 months ago
- ☆227Updated 5 months ago
- ☆169Updated 4 months ago
- Local SYSTEM auth trigger for relaying☆167Updated 4 months ago
- ☆88Updated 2 weeks ago
- An Ansible collection that installs an SCCM deployment with optional configurations.☆95Updated 5 months ago
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆230Updated 2 weeks ago