PoC for Zerologon - all research credits go to Tom Tervoort of Secura
Statistics for this project are still being loaded, please check back later.
一个攻防知识仓库 Red Teaming and Offensive Security
Tools for Kerberos PKINIT and relaying to AD CS
Python version of the C# tool for "Shadow Credentials" attacks
Domain Password Audit Tool for Pentesters
Windows passwords decryption from dump files
Kerberoast with ACL abuse capabilities
Exchange your privileges for Domain Admin privs by abusing Exchange
Proof-of-concept tools for my AD Forest trust research
DCSync Attack from Outside using Impacket
Tool for Active Directory Certificate Services enumeration and abuse
Dump Azure AD Connect credentials for Azure AD and Active Directory
A python2 script for sweeping a network to find windows systems compromised with the DOUBLEPULSAR...
Kerberos unconstrained delegation abuse toolkit
Extract credentials from lsass remotely
BloodyAD is an Active Directory Privilege Escalation Framework