Skip to content
Pwnage
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
MS17-010
ClearTextPasswordsGroupAttributes.ps1
ClearTextPasswordsUserAttributes.ps1
DomainPasswordSpray.ps1
Get-GPPPassword.ps1
Get-PassHashes.ps1
Inveigh.ps1
Invoke-ACLPwn.ps1
Invoke-Kerberoast.ps1
Invoke-Mimikatz.ps1
LAPSToolkit.ps1
New-ADReport.ps1
PowerUp.ps1
PowerView.ps1
README.md
SharpHound.exe
SharpHound.ps1
parse_kerberoast.py
powercat.ps1

README.md

highway_to_hell

Note:

  • ACL-Pwn relies on Sharphound's binary
  • Netview has Share finders
  • Password sprayin -> Attempt only 1 password! (CrackMapExec)
  • If possible do Nessus scan

Missing:

  • Nmap -> MS17-010
  • MS17-010 exploit needs to be changed with proper exploitation e.g. run powershell netcat reverse shell
  • Impacket for SMB Relaying
  • Search shares for embedded passwords in scripts
  • Responder

TODO:

You can’t perform that action at this time.