tothi / serviceDetectorLinks
Detect whether a service is installed (blindly) and/or running (if exposing named pipes) on a remote machine without using local admin privileges.
☆234Updated last year
Alternatives and similar repositories for serviceDetector
Users that are interested in serviceDetector are comparing it to the libraries listed below
Sorting:
- OPSEC safe Kerberoasting in C#☆192Updated 3 years ago
- ☆221Updated last year
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆257Updated 2 years ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆253Updated last year
- Cortex XDR Config Extractor☆133Updated 2 years ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆354Updated last year
- ☆208Updated last year
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆176Updated 2 years ago
- ☆163Updated 8 months ago
- Collection of random RedTeam scripts.☆207Updated last year
- A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.☆262Updated last year
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆314Updated 8 months ago
- Attempt at Obfuscated version of SharpCollection☆219Updated 2 weeks ago
- ☆119Updated 4 months ago
- More examples using the Impacket library designed for learning purposes.☆264Updated 2 years ago
- Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods☆118Updated 2 years ago
- Lord Of Active Directory - automatic vulnerable active directory on AWS☆147Updated last year
- A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks☆165Updated last year
- Impacket is a collection of Python classes for working with network protocols.☆291Updated 2 weeks ago
- ☆154Updated 5 months ago
- This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …☆256Updated 3 years ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆176Updated 2 years ago
- ☆184Updated 8 months ago
- ☆207Updated 3 months ago
- Use ESC1 to perform a makeshift DCSync and dump hashes☆211Updated last year
- Buggy script to play with GPOs☆111Updated 7 months ago
- ☆283Updated 2 years ago
- The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.☆123Updated 5 years ago
- Recovering NTLM hashes from Credential Guard☆345Updated 2 years ago
- Python tool to Check running WebClient services on multiple targets based on @leechristensen☆280Updated 3 years ago