With kerbrute.py:
python kerbrute.py -domain <domain_name> -users <users_file> -passwords <passwords_file> -outputfile <output_file>With Rubeus version with brute module:
Rahmi YILDIZ rahmiy
TarlogicSecurity
/ kerberos_attacks_cheatsheet.md
Created
May 14, 2019 13:33
A cheatsheet with commands that can be used to perform kerberos attacks
todmephis
/ setupmykl.sh
Last active
January 20, 2021 21:14
Script to setup my kl installation. (deprecated)
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| #LAST UPDATE: 30/03/2020 | |
| #LAS CHANGE: added pkg-config. | |
| RED='\033[0;31m' | |
| GRN='\033[0;32m' | |
| YLL='\033[1;33m' | |
| NC='\033[0m' # No Color | |
| #FILE NAMES | |
| PTROOTDIR="pentestTools" | |
| PTDIRS="{lists,tools,shells/{klbuiltin,}}" |
ssstonebraker
/ Active Directory Attacks.md
Last active
January 15, 2025 00:06
Active Directory Attacks #oscp
Note: I did not author this, i found it somehwere.
- Tools
- Most common paths to AD compromise
- [GPO - Pivoting with Local Admin
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Retrieves all of the trust relationships for this domain - Does not Grab Forest Trusts | |
| ([System.DirectoryServices.ActiveDirectory.Domain]::GetCurrentDomain()).GetAllTrustRelationships() | |
| Grab Forest Trusts. | |
| ([System.DirectoryServices.ActiveDirectory.Forest]::GetCurrentForest()).GetAllTrustRelationships() | |
5bhuv4n35h
/ install.sh
Last active
July 27, 2020 12:17
pentest setup backup shell script to install sublime,typora,shellter,wine,figlet,lolcat,gobuster automatically using linux commands #oscp #pentest #documentation #tools
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| ##### (Cosmetic) Colour output | |
| RED="\033[01;31m" # Issues/Errors | |
| GREEN="\033[01;32m" # Success | |
| YELLOW="\033[01;33m" # Warnings/Information | |
| BLUE="\033[01;34m" # Heading | |
| BOLD="\033[01;01m" # Highlight | |
| RESET="\033[00m" # Normal |
5bhuv4n35h
/ buffers.sh
Created
May 12, 2020 11:06
gerate unique string and eip in one place .run buffer overflow e
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| ##### (Cosmetic) Colour output | |
| RED="\033[01;31m" # Issues/Errors | |
| GREEN="\033[01;32m" # Success | |
| YELLOW="\033[01;33m" # Warnings/Information | |
| BLUE="\033[01;34m" # Heading | |
| BOLD="\033[01;01m" # Highlight | |
| RESET="\033[00m" # Normal | |
| echo -e "${GREEN}" | |
| ##################################installation starts ###################################### |
AvasDream
/ oscp_prep.md
Last active
February 5, 2025 04:40
Resource for OSCP like HTB Boxes with Ippsec Videos and Writeups.
todmephis
/ Automating scanning with fish shell
Last active
August 12, 2020 07:46
Automating scanning with fish shell
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| =======================HOST DISCOVERY=========================================== | |
| Host discovery con PING: | |
| $ for octect in (seq 0 254) | |
| echo "Pinging [X.X.X.$octect]" | |
| ping -c 2 10.150.150.$octect | grep "bytes from" | awk '{print $4}' | uniq -d | cut -d ":" -f 1 | tee -a targets.list | |
| end | |
| Host discovery con NMAP IMCP o ARP | |
| $sudo nmap -vv -sn -PE 10.150.150.0/24 -oG HOSTDISCOVERY_ICMP.gnmap |
cyberheartmi9
/ kerberos attacks
Last active
November 20, 2022 10:41
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ======================================================================================================================== | |
| Kerberos Attacks | |
| ======================================================================================================================== | |
| [+] Kerbose attack | |
| ./GetUserSPNs.py -dc-ip 192.168.168.10 sittingduck.info/notanadmin |
cyberheartmi9
/ Red-Team-notes
Last active
March 12, 2025 23:43
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Enumeration | |
| # Credential Injection | |
| runas.exe /netonly /user:<domain>\<username> cmd.exe | |
| # enumeration users | |
| users | |
| net user /domain |