Adfsbrute is a script to test credentials against Active Directory Federation Services (ADFS), calculating the ADFS url of an organization and allowing password spraying or bruteforce attacks. In case the company does not use a custom ADFS sign-in page, it will carry out the attack against Office 365’s Microsoft Server Active Sync url.

Ntds-analyzer is a tool to extract and analyze the hashes in Ntds.dit files after cracking the LM and NTLM hashes in it. It offers relevant information about the Active Directory’s passwords, such as the most common used ones or which accounts use the username as password. Also, it offers an extra functionality: it calculates the NTLM hash value from the LM hash when only the latter has been cracked (we will explain this later!).

Link: https://github.com/ricardojoserf/slae32/tree/master/a7_Custom_Crypter

Link: https://github.com/ricardojoserf/slae32/tree/master/a6_Polymorphism

Link: https://github.com/ricardojoserf/slae32/tree/master/a5_Shellcode_Functionality

Link: https://github.com/ricardojoserf/slae32/tree/master/a4_Custom_Encoder

Link: https://github.com/ricardojoserf/slae32/tree/master/a3_Egg_Hunter

Link: https://github.com/ricardojoserf/slae32/tree/master/a2_Shell_Reverse_Tcp

Link: https://github.com/ricardojoserf/slae32/tree/master/a1_Shell_Bind_Tcp