Garrett Foster's repositories
windows-coerced-authentication-methods
A list of methods to coerce a windows machine to authenticate to an attacker-controlled machine through a Remote Procedure Call (RPC) with various protocols.
cloud-proxy
cloud-proxy creates multiple DO droplets and then starts local socks proxies using SSH
ldap_shell
AD ACL abuse
ADGenerator
Active Directory Generator files for Movement, Pivoting, and Persistence for Pentesters and Ethical Hackers.
p0wnedShell
PowerShell Runspace Post Exploitation Toolkit
PrivescCheck
Privilege Escalation Enumeration Script for Windows
wmiexec-Pro
New generation of wmiexec.py
Certipy
Tool for Active Directory Certificate Services enumeration and abuse
DefaultCreds-cheat-sheet
One place for all the default credentials to assist the Blue/Red teamers activities on finding devices with default password 🛡️
Invoke-Pre2kSpray
Modified DomainPasswordSpray version to enumerate machine accounts and perform a pre2k password spray.
ldapdomaindump
Active Directory information dumper via LDAP
PetitPotam
PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
pyldapsearch
Tool for issuing manual LDAP queries which offers bofhound compatible output
SharpSCCM
A C# utility for interacting with SCCM