synacktiv / ntdissector

Related projects ⓘ

Alternatives and complementary repositories for ntdissector

• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆147Updated 3 weeks ago
• skelsec / pysnaffler
  pysnaffler
  ☆86Updated 3 months ago
• powerseb / PowerExtract
  ☆112Updated last year
• mandiant / ccmpwn
  ☆181Updated 7 months ago
• Orange-Cyberdefense / LinikatzV2
  linikatz is a tool to attack AD on UNIX
  ☆138Updated last year
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆133Updated 3 months ago
• Flangvik / QRucible
  Python utility that generates "imageless" QR codes in various formats
  ☆100Updated 3 months ago
• 1njected / CMLoot
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares
  ☆158Updated last year
• CCob / Shwmae
  ☆129Updated last month
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆123Updated 3 months ago
• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆63Updated last week
• rotarydrone / GlobalUnProtect
  Decrypt GlobalProtect configuration and cookie files.
  ☆138Updated 2 months ago
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆63Updated 3 weeks ago
• RedSiege / jargon
  ☆123Updated 4 months ago
• Leo4j / Invoke-SessionHunter
  Retrieve and display information about active user sessions on remote computers. No admin privileges required.
  ☆164Updated 3 months ago
• Flangvik / Bobber
  Bounces when a fish bites - Evilginx database monitoring with exfiltration automation
  ☆158Updated 5 months ago
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆134Updated last month
• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆104Updated 6 months ago
• itaymigdal / LOLSpoof
  An interactive shell to spoof some LOLBins command line
  ☆180Updated 9 months ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆113Updated 6 months ago
• trustedsec / specula
  ☆180Updated last month
• decoder-it / KrbRelay-SMBServer
  ☆184Updated last month
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆157Updated 3 weeks ago
• t3hbb / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆75Updated 2 years ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆80Updated 4 months ago
• Tanguy-Boisset / bloodhound-automation
  Automatically run and populate a new instance of BH CE
  ☆54Updated last month
• garrettfoster13 / aced
  ☆151Updated 2 weeks ago
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆97Updated last year
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆196Updated last week
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆166Updated last year