zblurx / BloodHoundCustomQueries
My BloodHound custom queries
☆23Updated 2 years ago
Alternatives and similar repositories for BloodHoundCustomQueries:
Users that are interested in BloodHoundCustomQueries are comparing it to the libraries listed below
- HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection☆54Updated 3 years ago
- WhoAmI by asking the LDAP service on a domain controller.☆61Updated 3 years ago
- Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…☆25Updated last year
- Extract registry and NTDS secrets from local or remote disk images☆37Updated last week
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Updated 2 years ago
- Convert an LDIF file to JSON files ingestible by BloodHound☆41Updated 6 months ago
- Scripts to interact with Microsoft Graph APIs☆36Updated 4 months ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆74Updated 2 years ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆33Updated 9 months ago
- A BOF tool that can be used to collect passwords using CredUIPromptForWindowsCredentialsName.☆13Updated 2 years ago
- ☆43Updated 8 months ago
- SuperSharpShares is a tool designed to automate enumerating domain shares, allowing for quick verification of accessible shares by your a…☆73Updated 10 months ago
- ☆71Updated last year
- Federated Office365 user enumeration based on correlated response trend analysis☆50Updated 2 years ago
- Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…☆49Updated 2 years ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆42Updated 5 months ago
- Items related to the RedELK workshop given at security conferences☆28Updated last year
- ☆26Updated last year
- Find Inbound Email Domains☆22Updated last year
- Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+☆25Updated 7 months ago
- ☆15Updated last year
- Leveraging AWS Lambda Function URLs for C2 Redirection☆31Updated last year
- Scripts for public use that we've randomly written, or have updated from other people's work.☆40Updated 8 months ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆33Updated last year
- ☆31Updated 2 months ago
- Generate AES128/256 Kerberos keys for an AD account using a plaintext password and Python3☆51Updated 2 years ago
- ☆16Updated 5 months ago
- ☆42Updated 2 years ago
- Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL☆21Updated 2 years ago
- Tool to aid in dumping LSASS process remotely☆37Updated 7 months ago