{"id":29027281,"url":"https://github.com/000pp/hexodus","last_synced_at":"2025-06-26T06:05:21.156Z","repository":{"id":299493366,"uuid":"986729617","full_name":"000pp/hexodus","owner":"000pp","description":"🟪 Hexodus is a Python framework project designed to enumerate and help in Active Directory attacks through Windows protocols like SMB, LDAP, WinRM and other.","archived":false,"fork":false,"pushed_at":"2025-06-16T20:12:07.000Z","size":94,"stargazers_count":2,"open_issues_count":0,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-06-16T21:24:14.046Z","etag":null,"topics":["active-directory","ldap","ntlm","pentest","red-team","smb","windows"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/000pp.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-05-20T03:35:50.000Z","updated_at":"2025-06-16T20:30:41.000Z","dependencies_parsed_at":"2025-06-16T21:34:25.171Z","dependency_job_id":null,"html_url":"https://github.com/000pp/hexodus","commit_stats":null,"previous_names":["000pp/hexodus"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/000pp/hexodus","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/000pp%2Fhexodus","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/000pp%2Fhexodus/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/000pp%2Fhexodus/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/000pp%2Fhexodus/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/000pp","download_url":"https://codeload.github.com/000pp/hexodus/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/000pp%2Fhexodus/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":262010871,"owners_count":23244414,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["active-directory","ldap","ntlm","pentest","red-team","smb","windows"],"created_at":"2025-06-26T06:05:20.606Z","updated_at":"2025-06-26T06:05:21.136Z","avatar_url":"https://github.com/000pp.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"\u003cp align=\"center\"\u003e\n    \u003cpicture\u003e\n        \u003cimg src=\"img/logo_background_white.png\"\u003e\n    \u003c/picture\u003e\n\u003c/p\u003e\n\n\u003chr/\u003e\n\nHexodus is a Python framework designed to enumerate Active Directory objects and assist with attacks using Windows protocols such as SMB, LDAP, RPC, and others. It uses an SQLite database to store collected data and a Flask-based web interface to make it easier to analyze the environment.\n\n\u003cbr\u003e\n\n## Documentation\nIn the [documentation](https://github.com/000pp/hexodus/wiki), you can find guidance on how to use Hexodus commands, information on known errors reported by the community or by the developers, and possible solutions to those issues.\n\n\u003cbr\u003e\n\n## Installation\nWe recommend using [pipx](https://github.com/pypa/pipx) to install the project, so you can run it from anywhere and make things easier.\n\n### Linux\n```\nsudo apt install pipx git\npipx ensurepath\npix install git+https://github.com/000pp/hexodus\n```\n\n### MacOS\n```\nbrew install pipx\npipx ensurepath\npix install git+https://github.com/000pp/hexodus\n```\n\n### Local\n```\ngit clone https://github.com/000pp/hexodus.git\npipx install .\n```\n\n### Updating\n```\npipx reinstall hexodus\n```\n\n\u003cbr\u003e\n\n## Usage\n\nTo start using Hexodus, you need to create a profile and configure the necessary information for LDAP and SMB binding. The basic usage is as follows:\n\n1. Create a profile\n```\nhexodus -c \u003cprofile-name\u003e \u003cdomain\u003e \u003cuser\u003e \u003cpassword\u003e\nhexodus -c corp corp.local john.doe 'NewPassword123!'\n```\n\n2. Test the connection or run a module\n```\nhexodus corp ldap 192.168.15.52\nhexodus corp ldap 192.168.15.52 users\nhexodus corp smb  192.168.52.52 share\n```\n\nYou can also list the available modules for each protocol by using `list` in place of the host argument:\n```\nhexodus corp ldap list\nhexodus corp smb list\n```\n\nTo start or stop the webapp you use the `-s` and `-sw` flags:\n```\nhexodus -s    (start the webapp)\nhexodus -sw   (stop the webapp)\n```\n\n\u003cbr\u003e\n\n![image](https://github.com/user-attachments/assets/650cff60-246c-4764-af0d-68b5a7d7070b)\n\n![image](https://github.com/user-attachments/assets/fa553d83-069c-4fe0-878f-5f452603923f)\n\n![image](https://github.com/user-attachments/assets/944fb9d7-ebc5-4083-910d-126e04b707d7)\n\n\u003cbr\u003e\n\n## To-Do\n- [ ] Add interactive smb client \n- [ ] Add modules that uses WinRM protocol \n- [ ] Add vulnerabilities modules (BadSucessor, Backup Operator and other)\n- [ ] Add module to download/read files remotely\n- [ ] Add support to IP networks and files as input\n- [ ] Add support to Kerberos\n- [x] Improve webview HTML and CSS\n- [ ] Improve LDAP binding method\n- [ ] Search for new protocols to use\n- [ ] Automatize known-attacks (UnPAC the hash for example)\n\n\u003cbr\u003e\n\n## Credits\n- [NetExec](https://github.com/Pennyw0rth/NetExec)\n- [Impacket](https://github.com/fortra/impacket)\n- [SecTools](https://github.com/p0dalirius/sectools)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F000pp%2Fhexodus","html_url":"https://awesome.ecosyste.ms/projects/github.com%2F000pp%2Fhexodus","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2F000pp%2Fhexodus/lists"}