zimedev / certipy-mergedLinks
Tool for Active Directory Certificate Services enumeration and abuse
☆162Updated 9 months ago
Alternatives and similar repositories for certipy-merged
Users that are interested in certipy-merged are comparing it to the libraries listed below
Sorting:
- Weaponizing DCOM for NTLM Authentication Coercions☆275Updated 6 months ago
- ☆233Updated last year
- ☆97Updated last month
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆153Updated 2 months ago
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.☆374Updated 4 months ago
- psexecsvc - a python implementation of PSExec's native service implementation☆232Updated 11 months ago
- A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …☆213Updated 2 weeks ago
- The DCERPC only printerbug.py version☆194Updated 2 months ago
- ☆215Updated last year
- Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)☆206Updated last year
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆259Updated 2 months ago
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆259Updated 11 months ago
- PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph☆283Updated last week
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆352Updated 2 weeks ago
- Continuous password spraying tool☆198Updated last month
- Interract with Microsoft SQL Server (MS SQL | MSSQL) servers and their linked instances in restricted environments, without the need for …☆51Updated this week
- ☆29Updated last year
- Enumerate Domain Users Without Authentication☆281Updated 9 months ago
- A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …☆188Updated 9 months ago
- comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…☆212Updated last year
- A tool for coercing and relaying Kerberos authentication over DCOM and RPC.☆146Updated 6 months ago
- ☆244Updated last year
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆342Updated last year
- Generate and Manage KeyCredentialLinks☆180Updated 3 months ago
- Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …☆229Updated last year
- A Python POC for CRED1 over SOCKS5☆162Updated last year
- Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler☆117Updated 6 months ago
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆250Updated last month
- OAuth Device Code Phishing Toolkit☆108Updated 4 months ago
- This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…☆213Updated last year