t94j0 / adexplorersnapshot-rsLinks
☆83Updated last year
Alternatives and similar repositories for adexplorersnapshot-rs
Users that are interested in adexplorersnapshot-rs are comparing it to the libraries listed below
Sorting:
- Local SYSTEM auth trigger for relaying☆154Updated last month
- Lateral Movement☆124Updated last year
- .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS☆149Updated 6 months ago
- TokenCert☆100Updated 9 months ago
- AzureAD beacon object files☆124Updated 8 months ago
- A Python POC for CRED1 over SOCKS5☆154Updated 10 months ago
- Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…☆77Updated 2 weeks ago
- ☆133Updated 6 months ago
- An impacket-lite cli tool that combines many useful impacket functions using a single session.☆52Updated last month
- ☆191Updated 4 months ago
- Two in one, patch lifetime powershell console, no more etw and amsi!☆96Updated 3 months ago
- Beacon Object File (BOF) to obtain Entra tokens via authcode flow.☆102Updated 3 months ago
- SCEP request tool for AD CS and Intune☆62Updated 3 weeks ago
- ☆57Updated 6 months ago
- Lateral movement with DCOM DLL hijacking☆137Updated last month
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆140Updated last year
- ☆221Updated 10 months ago
- Tool for viewing NTDS.dit☆174Updated 5 months ago
- IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…☆116Updated last year
- Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning☆132Updated 3 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆160Updated last month
- A tool for coercing and relaying Kerberos authentication over DCOM and RPC.☆127Updated last month
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆207Updated 10 months ago
- Local SYSTEM auth trigger for relaying - X☆133Updated last month
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆138Updated 4 months ago
- ☆135Updated last year
- Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.☆122Updated 10 months ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆139Updated last year
- OAuth Device Code Phishing Toolkit☆84Updated 4 months ago
- Lateral Movement via the .NET Profiler☆82Updated 9 months ago