Lists (15)
Stars
ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the current state of the target AD environment.
kant2002 / de4dot
Forked from de4dot/de4dot.NET deobfuscator and unpacker.
Weaponizing DCOM for NTLM Authentication Coercions
n-etupirka / pre2k-exe-binary
Forked from garrettfoster13/pre2kA version compatible with exe binaries running on Windows.
Cobalt Strike BOF for evasive .NET assembly execution
Claude MCP server to perform analysis on ROADrecon data
Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
Python DPAPI NG Decryptor for non-Windows Platforms
An command-line RPC method enumerator, born out of RPCView's awesomeness
RpcView is a free tool to explore and decompile Microsoft RPC interfaces
Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.
Reaping treasures from strings in remote processes memory
List of ngrok/Cloudflare Tunnel alternatives and other tunneling software and services. Focus on self-hosting.
A BloodHound collector for Microsoft Configuration Manager
Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
A delicious, but malicious SSL-VPN server 🌮
PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirectory module (ADWS) or System.DirectoryServices class (LDAP).
Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domain joined machies
PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains.
Python implementation of GhostPack's Seatbelt situational awareness tool
Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel