whokilleddb / SOAPHound
SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Directory Web Services (ADWS) protocol.
☆33Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for SOAPHound
- in-process powershell runner for BRC4☆37Updated last year
- ☆46Updated last year
- Python3 rewrite of AsOutsider features of AADInternals☆35Updated 2 months ago
- PowerShell Implementation of ADFSDump to assist with GoldenSAML☆31Updated 6 months ago
- DFSCoerce exe revisited version with custom authentication☆36Updated 10 months ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- a simple poc showcasing the ability of an admin to suspend EDR's protected processes , making it useless☆39Updated 4 months ago
- Items related to the RedELK workshop given at security conferences☆27Updated last year
- Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe☆13Updated 11 months ago
- ☆15Updated last year
- .NET port of Leron Gray's azbelt tool.☆26Updated last year
- Scripts to interact with Microsoft Graph APIs☆31Updated 2 weeks ago
- malleable profile generator GUI for Havoc☆56Updated last year
- ☆43Updated 4 months ago
- ☆14Updated last month
- Enumerate the Domain for Readable and Writable Shares☆16Updated 5 months ago
- Create PDFs with HTML smuggling attachments that save on opening the document.☆27Updated last year
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆33Updated last year
- A care package of useful bofs for red team engagments☆48Updated 2 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆65Updated last year
- Tool for issuing manual LDAP queries which offers bofhound compatible output☆15Updated 2 months ago
- A repository with my code snippets for research/education purposes.☆50Updated last year
- Click Once + App Domain☆62Updated 11 months ago
- Bunch of BOF files☆24Updated 9 months ago
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆35Updated last month
- A C# port of https://gist.github.com/adamsvoboda/8f29e09d74b73e1dec3f9049c4358e80☆18Updated 11 months ago
- Leveraging AWS Lambda Function URLs for C2 Redirection☆22Updated last year
- A BOF tool that can be used to collect passwords using CredUIPromptForWindowsCredentialsName.☆11Updated 2 years ago
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆53Updated 2 years ago