vanhohen / ADNinja

Related projects ⓘ

Alternatives and complementary repositories for ADNinja

• Hagrid29 / DumpAADSyncCreds
  C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…
  ☆36Updated last year
• LuxNoBulIshit / Smug_Fu3k
  ☆51Updated 2 years ago
• magnusstubman / tokenduplicator
  Tool to start processes as SYSTEM using token duplication
  ☆37Updated 4 years ago
• Synzack / Excel-4.0-Shellcode-Generator
  ☆11Updated 4 years ago
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆77Updated 2 years ago
• BOFs / BOFs
  Beacon Object Files.
  ☆31Updated 8 months ago
• mr-r3b00t / NotProxyShellHunter
  Check for NotProxyShell CVE-2022-40140 & CVE-2022-41082
  ☆25Updated 2 years ago
• exploitblizzard / Syscall-Example
  Using syscall to load shellcode, Evasion techniques
  ☆26Updated 3 years ago
• blackarrowsec / Certify
  Active Directory certificate abuse.
  ☆36Updated 2 years ago
• simondotsh / DirSync
  DirSync is a simple proof of concept PowerShell module to demonstrate the impact of delegating DS-Replication-Get-Changes and DS-Replicat…
  ☆27Updated last year
• RixedLabs / IDLE-Abuse
  A method to execute shellcode using RegisterWaitForInputIdle API.
  ☆51Updated last year
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆102Updated last year
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 2 years ago
• Tw1sm / aesKrbKeyGen
  Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3
  ☆47Updated 2 years ago
• CodeXTF2 / evasion-adventures-files
  Slides and POC demo for my talk at Divizion Zero on EDR evasion titled "Evasion Adventures"
  ☆23Updated last year
• Yair-Men / Passenger
  ProcExp Driver (Ab)use
  ☆20Updated last year
• Octoberfest7 / Cohab_Processes
  A small Aggressor script to help Red Teams identify foreign processes on a host machine
  ☆81Updated last year
• netero1010 / Quser-BOF
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆83Updated last year
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• Hypnoze57 / SharpHound4Cobalt
  C# Data Collector for BloodHound with CobaltStrike integration (BOF.NET)
  ☆46Updated last year
• An00bRektn / gopher47
  A third-party Gopher Assassin for the Havoc Framework.
  ☆44Updated 10 months ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆20Updated 2 years ago
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆38Updated 11 months ago
• sliverarmory / injectAmsiBypass
  Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
  ☆48Updated 2 years ago
• p0dalirius / DomainUsersToXLSX
  Extract all users from an Active Directory domain to an Excel worksheet.
  ☆32Updated 7 months ago
• dosxuz / ProcessGhosting
  Small POC for process ghosting
  ☆38Updated 2 years ago