vletoux / DetectPasswordViaNTLMInFlow
Extract the password of the current user from flow (keylogger, config file, ..) Use SSPI to get a valid NTLM challenge/response and test passwords
☆58Updated 6 years ago
Alternatives and similar repositories for DetectPasswordViaNTLMInFlow:
Users that are interested in DetectPasswordViaNTLMInFlow are comparing it to the libraries listed below
- ☆25Updated 6 years ago
- ☆21Updated 7 years ago
- ☆26Updated 6 years ago
- A minimal safe version of mimikatz to only allow the export of non-exportable Windows certificates☆25Updated 6 years ago
- Easily serve HTTP and DNS keys for proper payload protection☆59Updated 6 years ago
- Babel-Shellfish deobfuscates and scans Powershell scripts on real-time right before each line execution.☆43Updated 6 years ago
- Quick PoC I Wrote for Bypassing Next Gen AV Remotely for Pentesting☆41Updated 6 years ago
- Converts the output from Invoke-Kerberoast into hashcat format.☆32Updated 6 years ago
- Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.☆43Updated 7 years ago
- ☆53Updated 5 years ago
- ☆76Updated 6 years ago
- A sample bot for Cobalt Strike 3☆22Updated 8 years ago
- Microsoft Applocker evasion tool☆38Updated 5 years ago
- New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.☆36Updated 7 years ago
- BlueKeep powershell scanner (based on c# code)☆39Updated 5 years ago
- Set of ultra technical notes about AD☆18Updated 6 years ago
- Loads the AutoIt DLL and PowerShell assemblies into memory and executes the specified keystrokes☆61Updated 7 years ago
- Python script to patch the reflective stub in a DLL☆24Updated 7 years ago
- PowerShell module to play with Kerberos S4U extensions☆51Updated 8 years ago
- C++ POC code for the wlbsctrl.dll hijack on IKEEXT☆53Updated 5 years ago
- Random source codes☆25Updated 4 years ago
- Test if an antivirus is installed via the resolution of the service virtual SID☆55Updated 5 years ago
- This is a quick POC for using the Matt Nelson (enigma0x3) technique for generating a malicious .SettingContent-ms extension type for remo…☆51Updated 6 years ago
- windows-operating-system-archaeology @Enigma0x3 @subTee☆45Updated 7 years ago
- ☆39Updated 6 years ago
- A C# implementation of the PowerShell Empire Agent☆74Updated 5 years ago
- Automating those tasks which can or should be automated☆61Updated 7 years ago
- Empire HTTP(S) C2 redirector setup script☆47Updated 6 years ago
- Tool to acquire netNTLM hashes on a local machine wihtout network traffic☆12Updated 6 years ago
- Inject .Net payloads into other .Net assemblies on disk☆61Updated 5 years ago