DarthSidious
Search…
Link encyclopedia
Going to try to keep this updated.

Microsoft

Powershell

Empire

  • ​Empire 101 - Empire Introduction from official documentation

Powerview

Bloodhound

Mimikatz

Enumeration

Kerberos

  • ​HarmJ0y - roasting-as-reps - Article about Kerberos preauthentication
  • ​HarmJ0y/ASREPRoast - Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.

Tunneling

  • ​SShuttle - SShuttle creates an SSH tunnel that works almost just like a VPN

Command and control (C2)

Exploit

  • ​SharpShooter - SharpShooter can create payloads for many formats like HTA, JS and VBS
  • ​DCShadow - DCShadow, attack technique to create a rogue domain controller

Mail

  • ​Ruler - Ruler can interact with Exchange servers remotely

Breaking out of locked down environments

Defense

Lab building

  • ​The Eye - Official MSDN ISOs for all OSes
  • ​Automatedlab/Automatedlab - Automatedlab is a project for building a lab environment automatically using Powershell.
  • ​Building a lab with ESXI and Vagrant - Big article from this book about building a lab using ESXi
  • ​Mini lab - Small article from this book about creating a small lab for practicing things like Responder

Other