Links
- https://github.com/micahvandeusen/gMSADumper
- https://zer1t0.gitlab.io/posts/attacking_ad/
- https://www.ired.team/
- CICADA8-Research/RemoteKrbRelay: Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
- Relaying Kerberos over SMB using krbrelayx
- Attacking Active Directory: 0 to 0.9 | zer1t0
- SensePost | Guest vs null session on windows
- https://specterops.io/blog/2025/12/10/scommand-and-conquer-attacking-system-center-operations-manager-part-1/
- https://specterops.io/blog/2025/12/10/scommand-and-conquer-attacking-system-center-operations-manager-part-2/
- https://github.com/breakfix/SharpSCOM
- https://github.com/lsecqt/Find-AdminAccess
- https://specterops.io/blog/2025/12/09/git-scommit-putting-the-ops-in-opsmgr/
- https://github.com/martinsohn/ADAttributeHound
- https://github.com/P0142/LDAP-Bof-Collection
- https://decoder.cloud/2025/11/24/reflecting-your-authentication-when-windows-ends-up-talking-to-itself/
- https://specterops.io/blog/2025/11/19/sccm-hierarchy-takeover-via-entra-integrationbecause-of-the-implication/
- https://github.com/ricardojoserf/SAMDump
- https://www.synacktiv.com/en/publications/site-unseen-enumerating-and-attacking-active-directory-sites
- https://github.com/MorDavid/donpwner
- https://github.com/bohops/COM-to-the-Darkside/
- https://specterops.io/blog/2025/10/21/is-kerberoasting-still-a-risk-when-aes-256-kerberos-encryption-is-enabled/
- https://github.com/bytewreck/DumpGuard
- https://github.com/mubix/Find-WSUS
- https://github.com/Hypnoze57/rpc2efs
- https://github.com/decoder-it/printerbugnew
- https://code-white.com/blog/wsus-cve-2025-59287-analysis/
- https://specterops.io/blog/2025/10/30/sharehound-an-opengraph-collector-for-network-shares/
- https://specterops.io/blog/2025/10/31/adminsdholder-misconceptions-misconfigurations-and-myths/
- https://github.com/kfallahi/UnderlayCopy
- https://github.com/warpnet/COM-Fuzzer
- https://github.com/7hePr0fess0r/ADCSDevilCOM
- https://github.com/Skeletal-Group/Hermes
- https://lolad-project.github.io/
- https://github.com/skelsec/msldap
- https://github.com/ghostpack
- https://github.com/GhostPack/Seatbelt
- https://github.com/GhostPack/Rubeus
- https://github.com/GhostPack/Certify
- https://github.com/GhostPack/SharpDPAPI
- https://github.com/GhostPack/ForgeCert
- https://github.com/GhostPack/DeepPass
- https://github.com/GhostPack/Koh
- https://github.com/GhostPack/SharpUp
- https://github.com/GhostPack/PSPKIAudit
- https://github.com/vysecurity/ANGRYPUPPY
- https://github.com/skelsec/minikerberos
- https://www.semperis.com/blog/microsoft-entra-connect-compromise-explained/
- https://specterops.io/blog/2025/07/30/entra-connect-attacker-tradecraft-part-3/
- https://aadinternals.com/