Category: Ethical Hacking

FindGPPPasswords

FindGPPPasswords: Uncover Group Policy Preferences Passwords

FindGPPPasswords A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts. Features  Only requires a low privileges domain user account.  Automatically gets the list of all...

password-spraying tool

CaptainCredz: modular and discreet password-spraying tool

CaptainCredz is a modular and discreet password-spraying tool, with advanced features such as a cache mechanism and a fine-grained timing control. To start using captaincredz, the following lines may be useful: Extending CaptainCredz Writing...

attack MLOps platforms

MLOKit: MLOps Attack Toolkit

MLOps Attack Toolkit – MLOKit is a toolkit that can be used to attack MLOps platforms by taking advantage of the available REST API. This tool allows the user to specify an attack module,...

AMSI Bypass

Ghosting-AMSI: AMSI Bypass via RPC Hijack

This technique exploits the COM-level mechanics AMSI uses when delegating scan requests to antivirus (AV) providers through RPC. By hooking into the NdrClientCall3 function—used internally by the RPC runtime to marshal and dispatch function...