Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
-
Updated
Apr 25, 2024 - PowerShell
Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
Active Directory ACL Visualizer and Explorer - who's really Domain Admin? (Commerical versions available from NetSection)
Bloodhound Reporting for Blue and Purple Teams
A self-service password management tool for Active Directory
A list of vulnerabilities or design flaws that Microsoft does not intend to fix. Since the number is growing, I decided to make a list. This list covers only vulnerabilities that came up in July 2021 (and SpoolSample ;-))
Group Policy Eater is a PowerShell module that aims to gather information about Group Policies but also allows fixing issues that you may find in them.
This PowerShell Module has multiple functionalities, but one of the signature features of this module is the ability to parse Security logs on Domain Controllers providing easy to use access to AD Events.
A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.
This cheat sheet outlines common enumeration and attack methods for Windows Active Directory using PowerShell.
The Old BloodHound C# Ingestor (Deprecated)
Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.
Make ORMs great again!
Enable drop-in Windows Single Sign On for popular Java web servers.
Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.
Automated Active Directory Enumeration
Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.
AD Health Check, Send HTML Email, Ping machines, Encrypt Password,Bulk Password,Microsoft Teams,Monitor Certificate expiry, Monitor cert expiry, AD attributes, IP to Hostname, Export AD group, CSV to SQL,Shutdown, Restart, Local Admin, Disk Space, Account expiry,Restore Permissions, Backup permissions, Delete Files Older Than X-Days, export DHCP…
This module contains DSC resources for deployment and configuration of Active Directory Domain Services.
Active Directory pentesting mind map
Add a description, image, and links to the activedirectory topic page so that developers can more easily learn about it.
To associate your repository with the activedirectory topic, visit your repo's landing page and select "manage topics."