Garrett Foster's repositories
windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
cloud-proxy
cloud-proxy creates multiple DO droplets and then starts local socks proxies using SSH
ADGenerator
Active Directory Generator files for Movement, Pivoting, and Persistence for Pentesters and Ethical Hackers.
ldap_shell
AD ACL abuse
p0wnedShell
PowerShell Runspace Post Exploitation Toolkit
PrivescCheck
Privilege Escalation Enumeration Script for Windows
wmiexec-Pro
New generation of wmiexec.py
Certipy
Tool for Active Directory Certificate Services enumeration and abuse
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Invoke-Pre2kSpray
Modified DomainPasswordSpray version to enumerate machine accounts and perform a pre2k password spray.
ldapdomaindump
Active Directory information dumper via LDAP
PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
pyldapsearch
Tool for issuing manual LDAP queries which offers bofhound compatible output
SharpSCCM
A C# utility for interacting with SCCM