How to Exploit Active Directory ACL Attack Paths Through LDAP Relaying Attacks - Praetorian
Using HTTPS socks doesn't seem to work · Issue #642 · SecureAuthCorp/impacket · GitHub
Red Teaming Made Easy with Exchange Privilege Escalation and PowerPriv
ntlmrelayx.py SOCKS option TypeError with socks5 · Issue #1025 · SecureAuthCorp/impacket · GitHub
Red Teaming Made Easy with Exchange Privilege Escalation and PowerPriv
What is old is new again: The Relay Attack – SecureAuth
ntlmrelayx SOCKS module · Issue #657 · SecureAuthCorp/impacket · GitHub
Hacking Tools Cheat Sheet – Compass Security Blog
ADCS + PetitPotam NTLM Relay: Obtaining krbtgt Hash with Domain Controller Machine Certificate - Red Teaming Experiments
Relaying 101 – LuemmelSec – Just an admin on someone else´s computer
ntlmrelayx.py -socks MSSQL Port · Issue #483 · SecureAuthCorp/impacket · GitHub
mitm6 – compromising IPv4 networks via IPv6 – Fox-IT International blog
Code execution over ntlmrelayx socks connection · Issue #412 · SecureAuthCorp/impacket · GitHub
ntlmrelayx - Twitter Search
Privilege Escalation in Active Directory | wiki.mrasec
How to Exploit Active Directory ACL Attack Paths Through LDAP Relaying Attacks - Praetorian
What is old is new again: The Relay Attack – SecureAuth
mpgn on Twitter: "In case you want to see something cool about CrackMapExec, ntlmrelayx and Responder 😌😋 1⃣ Responder -I eth0 2⃣ https://t.co/uaVzXZLXfG -t <ip> -smb2support -socks 3⃣ proxychains crackmapexec smb <ip> -
Abusing NTLM Relay and Pass-The-Hash for Admin | by Julian Runnels | InfoSec Write-ups
Admin's Nightmare: Combining HiveNightmare/SeriousSAM and AD CS Attack Path's for Profit - Black Hills Information Security
Using HTTPS socks doesn't seem to work · Issue #642 · SecureAuthCorp/impacket · GitHub
Relay - The Hacker Recipes
Red teaming tutorial: Active directory pentesting approach and tools - Infosec Resources
Remote NTLM relaying through meterpreter on Windows port 445 – DiabloHorn
