InveighZero is a C# LLMNR/NBNS/mDNS/DNS/DHCPv6 spoofer and man-in-the-middle tool designed to assist penetration testers/red teamers that find themselves limited to a Windows system. This version shares many features with the PowerShell version of Inveigh.
Privileged Mode Features (elevated admin required)
Unprivileged Mode Features
Other Features
Notable Missing Features
Notable Differences
Minimum .NET Version
Parameters
In most cases, when present, the InveighZero parameters mirror Inveigh’s parameters.
Why The Zero In The Name?
Inveigh started as a C# proof of concept before I switched over to PowerShell. The “Zero” is just a reference to the fact that the C# version sort of existed before the PowerShell version. Mainly though, I just needed a unique repo name.
Usage
Inveigh.exe
Inveigh.exe -IP 192.168.1.1
Inveigh.exe -IP 192.168.1.1 -SpooferIP 192.168.1.2
Inveigh.exe -Pcap Y -PcapTCP 80,445
Screenshots
ROADTools is a powerful framework designed for exploring and interacting with Microsoft Azure Active Directory…
Microsoft 365 Groups (also known as M365 Groups or Unified Groups) are at the heart…
SeamlessPass is a specialized tool designed to leverage on-premises Active Directory Kerberos tickets to obtain…
PPLBlade is a powerful Protected Process Dumper designed to capture memory from target processes, hide…
HikPwn: Comprehensive Guide to Scanning Hikvision Devices for Vulnerabilities If you’re searching for an efficient…
What Are Bash Comments? Comments in Bash scripts, are notes in your code that the…