With kerbrute.py:
python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>With Rubeus version with brute module:
Prince Adu-Gyamfi princejnr
princejnr
/ oracle-tns-poison.nse
Created
March 9, 2020 09:33
— forked from JukArkadiy/oracle-tns-poison.nse
Nmap script to test Oracle DB for "TNS poison vulnerability"
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| local bin = require "bin" | |
| local io = require "io" | |
| local nmap = require "nmap" | |
| local shortport = require "shortport" | |
| local stdnse = require "stdnse" | |
| local table = require "table" | |
| description = [[ | |
| Simple module to test Oracle DB server for TNS Poison vulnerability. | |
| Module sends to server a packet with command to register new TNS Listener and check response |
princejnr
/ kerberos_attacks_cheatsheet.md
Created
February 24, 2020 00:36
— forked from TarlogicSecurity/kerberos_attacks_cheatsheet.md
A cheatsheet with commands that can be used to perform kerberos attacks
princejnr
/ smb_credspray.sh
Created
January 2, 2020 03:44
— forked from ryan-wendel/smb_credspray.sh
Script to credential spray SMB servers with. Will attempt to access ADMIN$ to test for evelated privileges.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| HOST="$1" | |
| USERS="$2" | |
| PASSWORDS="$3" | |
| SLEEP="$4" | |
| TMP_FILE="/tmp/tmp_smb.$$.tmp" | |
| RPCCLIENT=$(which rpcclient) | |
| NMBLOOKUP=$(which nmblookup) |