tothi / serviceDetectorLinks
Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin privileges.
☆237Updated last year
Alternatives and similar repositories for serviceDetector
Users that are interested in serviceDetector are comparing it to the libraries listed below
Sorting:
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆258Updated 2 years ago
- ☆184Updated 9 months ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆258Updated last year
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆176Updated 2 years ago
- ☆222Updated last year
- More examples using the Impacket library designed for learning purposes.☆265Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆357Updated last year
- OPSEC safe Kerberoasting in C#☆192Updated 3 years ago
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆123Updated 5 years ago
- Impacket is a collection of Python classes for working with network protocols.☆292Updated last month
- Cortex XDR Config Extractor☆133Updated 2 years ago
- Collection of random RedTeam scripts.☆207Updated last year
- Attempt at Obfuscated version of SharpCollection☆219Updated this week
- ☆212Updated last year
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆117Updated 2 years ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆320Updated 9 months ago
- ☆155Updated 6 months ago
- A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.☆265Updated last year
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆397Updated last week
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆177Updated 2 years ago
- ☆208Updated 3 months ago
- A collection of code snippets built to assist with breaking chains.☆123Updated last year
- ☆287Updated 2 years ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 3 years ago
- ☆148Updated 5 months ago
- ☆119Updated 4 months ago
- Recovering NTLM hashes from Credential Guard☆345Updated 2 years ago
- ☆182Updated 2 months ago
- A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks☆169Updated last week
- Lord Of Active Directory - automatic vulnerable active directory on AWS☆147Updated last year