synacktiv / Invoke-RunAsWithCertLinks
A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
☆164Updated last year
Alternatives and similar repositories for Invoke-RunAsWithCert
Users that are interested in Invoke-RunAsWithCert are comparing it to the libraries listed below
Sorting:
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆118Updated last year
- ☆160Updated 11 months ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)☆206Updated last year
- A Python POC for CRED1 over SOCKS5☆162Updated last year
- Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…☆270Updated last year
- ☆215Updated last year
- ☆232Updated last year
- pysnaffler☆109Updated last week
- A python port of @dafthack's MFAsweep with some added OPSEC functionality. MFAde can be used to find single-factor authentication failure…☆50Updated 5 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆186Updated 2 months ago
- Hybrid AD utilities for ROADtools☆104Updated 7 months ago
- Parses Snaffler output file and generate beautified outputs.☆128Updated last week
- The DCERPC only printerbug.py version☆187Updated 2 months ago
- tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it☆130Updated 4 months ago
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆144Updated last year
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆190Updated 2 years ago
- SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆154Updated last week
- Python utility that generates "imageless" QR codes in various formats☆132Updated last year
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆256Updated last month
- Tool for viewing NTDS.dit☆190Updated 10 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆275Updated 6 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆211Updated last year
- Unauthenticated start EFS service on remote Windows host (make PetitPotam great again)☆128Updated 2 months ago
- PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads☆238Updated 2 months ago
- Local SYSTEM auth trigger for relaying☆168Updated 5 months ago
- A web assembly (WASM) phishing lure generator based on pre-built templates and written in Rust with some GenAI assistance. W.A.L.K. aims …☆97Updated last year
- ☆229Updated 7 months ago
- BloodHound PowerShell client☆75Updated last month
- Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.☆182Updated 3 weeks ago
- ☆94Updated last month