Pinned Repositories
Certipy
Tool for Active Directory Certificate Services enumeration and abuse
CrackMapExec
A swiss army knife for pentesting networks
EnableParentPriv
Enables the requested privilege in its parent process: the shell calling it
Get-ModifiablePathFromProcmon
A simple PowerShell function parsing a Procmon CSV output to extract accessed filesystem and registry paths and using @itm4n's PrivescCheck's functions `Get-ModifiablePath` and `Get-ModifiableRegistryPath` to find paths modifiable by the user.
HookDetector
HookDetector identifies DLL-imported functions that have been hooked in its own process.
impacket
Impacket is a collection of Python classes for working with network protocols.
InstallerFileTakeOver
regdiff.py
regdiff.py diffs two registry hives
ToyEDR
SAERXCIT's Repositories
SAERXCIT/Get-ModifiablePathFromProcmon
A simple PowerShell function parsing a Procmon CSV output to extract accessed filesystem and registry paths and using @itm4n's PrivescCheck's functions `Get-ModifiablePath` and `Get-ModifiableRegistryPath` to find paths modifiable by the user.
SAERXCIT/HookDetector
HookDetector identifies DLL-imported functions that have been hooked in its own process.
SAERXCIT/impacket
Impacket is a collection of Python classes for working with network protocols.
SAERXCIT/Certipy
Tool for Active Directory Certificate Services enumeration and abuse
SAERXCIT/CrackMapExec
A swiss army knife for pentesting networks
SAERXCIT/EnableParentPriv
Enables the requested privilege in its parent process: the shell calling it
SAERXCIT/InstallerFileTakeOver
SAERXCIT/regdiff.py
regdiff.py diffs two registry hives
SAERXCIT/ToyEDR
SAERXCIT/SharpHound
C# Data Collector for BloodHound