xpn / OktaPostExToolkit
☆166Updated 6 months ago
Related projects: ⓘ
- A tool leveraging Kerberos tickets to get Microsoft 365 access tokens using Seamless SSO☆76Updated 3 weeks ago
- A command-line tool for reconnaissance and targeted write operations on Confluence and Jira instances.☆239Updated last year
- ☆110Updated last year
- ☆171Updated last month
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆259Updated 11 months ago
- The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin☆164Updated last year
- C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps☆131Updated last month
- ☆139Updated 6 months ago
- Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit☆119Updated last month
- Cortex XDR Config Extractor☆119Updated last year
- Red Team "Drop and Run" NAC (802.1x) Bypass☆66Updated last year
- A Red Team Activity Hub☆168Updated 3 weeks ago
- linikatz is a tool to attack AD on UNIX☆134Updated 11 months ago
- ☆174Updated 5 months ago
- Some scripts to support with importing large datasets into BloodHound☆75Updated 9 months ago
- C# POC to extract NetNTLMv1/v2 hashes from ETW provider☆250Updated last year
- using graph proxy to monitor teams user presence☆51Updated 2 months ago
- ☆114Updated 2 months ago
- ☆141Updated 10 months ago
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares☆152Updated last year
- ☆144Updated 7 months ago
- Proof of concept: using a Cloudflare worker for AITM attacks☆85Updated 6 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆293Updated 6 months ago
- Lord Of Active Directory - automatic vulnerable active directory on AWS☆129Updated 11 months ago
- PoC to coerce authentication from Windows hosts using MS-WSP☆218Updated last year
- ☆216Updated 10 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆85Updated 2 months ago
- ☆119Updated last month
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆114Updated last month
- Timeroasting scripts by Tom Tervoort☆176Updated last year