zer1t0 / ntlm-infoView external linksLinks
Retrieve host information from NTLM
☆32Feb 4, 2021Updated 5 years ago
Alternatives and similar repositories for ntlm-info
Users that are interested in ntlm-info are comparing it to the libraries listed below
Sorting:
- Kerberos protocol attacker☆140Feb 1, 2021Updated 5 years ago
- A quick and dirty way to bypass encrypted EPA to connect to a NetScaler Gateway☆20Oct 11, 2019Updated 6 years ago
- C# port of the Get-AppLockerPolicy PS cmdlet☆100Dec 8, 2022Updated 3 years ago
- A way to maintain long-term access to Windows LAPS for lateral movement in AD via installing an Offensive LAPS RPC backdoor on a DC.☆29Jun 9, 2025Updated 8 months ago
- ☆26Nov 8, 2024Updated last year
- A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host☆41Dec 8, 2023Updated 2 years ago
- This repo hosts a poc of how to execute F# code within an unmanaged process☆70Jun 25, 2024Updated last year
- ☆43Jul 9, 2024Updated last year
- Investigation about ACL abusing for Active Directory Certificate Services (AD CS)☆130Oct 10, 2021Updated 4 years ago
- Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.☆45Nov 29, 2024Updated last year
- Utility to inject honey tokens into lsass.☆28Feb 7, 2017Updated 9 years ago
- Determine if the WebClient Service (WebDAV) is running on a remote system☆142Mar 9, 2024Updated last year
- OPSEC safe Kerberoasting in C#☆198Jun 14, 2022Updated 3 years ago
- Dump Citrix Secure Access auth cookie from the process memory☆76Jun 24, 2022Updated 3 years ago
- ☆49Feb 11, 2023Updated 3 years ago
- a demo module for the kaine agent to execute and inject assembly modules☆41Aug 28, 2024Updated last year
- Rust port of kdmapper☆22Aug 24, 2021Updated 4 years ago
- Repository for LNK stuff☆31Aug 31, 2022Updated 3 years ago
- Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications☆22Mar 28, 2025Updated 10 months ago
- ☆16Dec 7, 2025Updated 2 months ago
- Aggressor Notification Scripts for cobaltstrike via slack & discord☆14Nov 27, 2025Updated 2 months ago
- Rust bindings for VMProtect.☆27Mar 8, 2024Updated last year
- A simple rpc2socks alternative in pure Go.☆31Jul 8, 2024Updated last year
- Beacon Object File to locate and suspend the threads hosting the Event Log service☆29Jun 17, 2022Updated 3 years ago
- A script used to query the dehashed API and filter for more useful results☆17Jun 20, 2021Updated 4 years ago
- Supporting PoCs and scripts for my talk "OverLAPS: Overriding LAPS Logic"☆22Oct 12, 2025Updated 4 months ago
- Tool for obtaining information about PPL processes☆16Feb 12, 2024Updated 2 years ago
- Programmatically start WebClient from an unprivileged session to enable that juicy privesc.☆77Feb 8, 2023Updated 3 years ago
- A work in progress BOF/COFF loader in Rust☆50Mar 22, 2023Updated 2 years ago
- Local SYSTEM auth trigger for relaying☆168Jul 22, 2025Updated 6 months ago
- DirSync is a simple proof of concept PowerShell module to demonstrate the impact of delegating DS-Replication-Get-Changes and DS-Replicat…☆29Apr 26, 2023Updated 2 years ago
- Rust For Windows Cheatsheet☆121Nov 26, 2025Updated 2 months ago
- Automated .NET AppDomain hijack payload generation☆129Feb 4, 2025Updated last year
- Load dll with undocumented functions and debug symbols☆47Jul 20, 2024Updated last year
- Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post☆130Jan 14, 2023Updated 3 years ago
- Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations☆160Mar 1, 2024Updated last year
- ☆12Oct 9, 2020Updated 5 years ago
- ☆17Jun 28, 2023Updated 2 years ago
- C# version of Powermad☆170Dec 5, 2023Updated 2 years ago