ACLight
Account scanner
A tool for discovering privileged accounts in networks by analyzing access control lists and permissions.
A script for advanced discovery of Privileged Accounts - includes Shadow Admins
791 stars
71 watching
143 forks
Language: PowerShell
last commit: over 5 years ago
Linked from 1 awesome list
account-managementaclactive-directorypowershellshadow-admin
enaqx/awesome-pentestRelated projects:
| Repository | Description | Stars |
|---|---|---|
| cyberark/skyark | A cloud security tool that discovers and secures privileged entities in Azure and AWS environments. | 877 |
| cyberark/kubiscan | Automates the identification of risky permissions in Kubernetes clusters. | 1,329 |
| cyberark/skywrapper | Detects suspicious temporary token usage in an AWS account to identify potential security threats. | 104 |
| cyberark/conjur | A system for securely managing access to sensitive data and applications in cloud-based infrastructure | 786 |
 mitchmoser/lacheck | A tool designed to enumerate local administrative privileges on Windows systems using various protocols | 83 |
 christruncer/eyewitness | An automated web vulnerability scanning tool designed to take screenshots of websites and identify default credentials. | 20 |
| cyberark/blobhunter | Identifies publicly accessible Azure blob storage containers | 321 |
 andresriancho/enumerate-iam | A tool to automatically enumerate permissions associated with AWS credentials | 1,105 |
 csandker/azure-accesspermissions | A PowerShell script to enumerate access permissions in an Azure Active Directory environment | 106 |
 cloudlinux/kcare-uchecker | Detects outdated shared libraries linked to processes in memory and provides suggestions for updating them. | 184 |
 ztgrace/changeme | A tool designed to detect default and backdoor credentials by scanning various protocols | 1,457 |
 carlospolop/purplepanda | A tool that identifies privilege escalation paths in cloud and saas applications by analyzing permissions across multiple platforms. | 673 |
 moduscreateorg/beep | An account security scanner that detects vulnerabilities in online accounts by hashing credentials and checking against data breaches. | 157 |
 chris408/ct-exposer | An OSINT tool that searches Certificate Transparency logs to discover sub-domains | 469 |
 eladshamir/whisker | A tool for manipulating Active Directory user and computer accounts by adding shadow credentials. | 824 |