vletoux / DetectPasswordViaNTLMInFlowLinks
Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test passwords
☆59Updated 6 years ago
Alternatives and similar repositories for DetectPasswordViaNTLMInFlow
Users that are interested in DetectPasswordViaNTLMInFlow are comparing it to the libraries listed below
Sorting:
- ☆25Updated 7 years ago
- Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting☆41Updated 6 years ago
- Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.☆47Updated 8 years ago
- ☆78Updated 7 years ago
- Powershell script which will take any payload and put it in the a bat script which delivers the payload. The payload is delivered using e…☆52Updated last year
- Ps1jacker is a tool for generating COM Hijacking payload.☆60Updated 9 months ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆43Updated 7 years ago
- Random source codes☆25Updated last month
- ☆26Updated 7 years ago
- ☆41Updated 7 years ago
- ☆94Updated 7 years ago
- few months old but better than nothing☆58Updated 3 years ago
- Slides from my talk "whoami /priv" at Romhack 2018☆39Updated 7 years ago
- .NET tool for enumeration processes and dumping memory.☆57Updated 6 years ago
- Easily serve HTTP and DNS keys for proper payload protection☆59Updated 7 years ago
- ☆20Updated 6 years ago
- Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes☆62Updated 8 years ago
- Cobalt Strike log state tracking, parsing, and storage☆24Updated 6 years ago
- Inject .Net payloads into other .Net assemblies on disk☆61Updated 5 years ago
- .net tool that uses WMI queries to enumerate active sessions and accounts configured to run services on remote systems☆36Updated 5 years ago
- windows-operating-system-archaeology @Enigma0x3 @subTee☆47Updated 8 years ago
- ☆69Updated 6 years ago
- C++ POC code for the wlbsctrl.dll hijack on IKEEXT☆55Updated 6 years ago
- ☆45Updated 7 years ago
- Obtains a list of GPOs based on known Client Side Extensions (CSE) that normally contain passwords☆33Updated 6 years ago
- Obtains a crackable hash for the current user account☆23Updated 6 years ago
- Bash one-liner that will parse harmj0y's SharpRoast or Rebeus kerberoast into hashcat crack-able format.☆32Updated 6 years ago
- Cobalt Strike Field Manual - A quick reference for Windows commands that can be accessed in a beacon console.☆65Updated 7 years ago
- ☆22Updated 7 years ago
- ☆64Updated 9 years ago