tothi / serviceDetectorLinks
Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin privileges.
☆237Updated 2 years ago
Alternatives and similar repositories for serviceDetector
Users that are interested in serviceDetector are comparing it to the libraries listed below
Sorting:
- PoC to coerce authentication from Windows hosts using MS-WSP☆291Updated 2 years ago
- OPSEC safe Kerberoasting in C#☆192Updated 3 years ago
- ☆222Updated last year
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆258Updated 2 years ago
- More examples using the Impacket library designed for learning purposes.☆265Updated 2 years ago
- A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.☆267Updated 2 years ago
- ☆193Updated last month
- Cortex XDR Config Extractor☆134Updated 2 years ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆181Updated 2 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆124Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆362Updated last year
- ☆155Updated 7 months ago
- Collection of random RedTeam scripts.☆208Updated last year
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆177Updated 2 years ago
- ☆213Updated last year
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆257Updated 3 years ago
- Impacket is a collection of Python classes for working with network protocols.☆294Updated 2 months ago
- Recovering NTLM hashes from Credential Guard☆349Updated 2 years ago
- ☆119Updated 6 months ago
- Attempt at Obfuscated version of SharpCollection☆221Updated 3 weeks ago
- Lord Of Active Directory - automatic vulnerable active directory on AWS☆147Updated last year
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆124Updated 5 years ago
- ☆209Updated 5 months ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆399Updated last month
- ☆287Updated 2 years ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆326Updated 10 months ago
- ☆182Updated 3 months ago
- A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks☆174Updated last month
- Roast in the Middle☆293Updated 2 weeks ago
- Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles☆199Updated last year