From 6fce32046ca72f517b06951bcbf227d9d6b35268 Mon Sep 17 00:00:00 2001
From: pe3zx <pe3zx@users.noreply.github.com>
Date: Mon, 27 Jun 2022 22:02:22 +0700
Subject: [PATCH] Add: topotam/PetitPotam to Credential Access section

---
 Offensive.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/Offensive.md b/Offensive.md
index 1c6d0d8..bd2c961 100644
--- a/Offensive.md
+++ b/Offensive.md
@@ -2324,6 +2324,10 @@ Some tools can be categorized in more than one category. But because the current
         <td><a href="https://github.com/swisskyrepo/SharpLAPS">swisskyrepo/SharpLAPS</a></td>
         <td>Retrieve LAPS password from LDAP</td>
     </tr>
+    <tr>
+        <td><a href="https://github.com/topotam/PetitPotam">topotam/PetitPotam</a></td>
+        <td>PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.</td>
+    </tr>
     <tr>
         <td><a href="https://github.com/treebuilder/aad-sso-enum-brute-spray">treebuilder/aad-sso-enum-brute-spray</a></td>
         <td>POC of SecureWorks' recent Azure Active Directory password brute-forcing vuln</td>