Alternatives and similar repositories for cmd-bypass

Users that are interested in cmd-bypass are comparing it to the libraries listed below

• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆42Updated 3 months ago
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆54Updated last month
• 0xthirteen / reg_snake
  Python tool to interact with WMI StdRegProv
  ☆60Updated last year
• nullenc0de / trust-validator
  Validates priv escalation of AD trusts
  ☆48Updated 9 months ago
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆41Updated 2 years ago
• cogiceo / DACLSearch
  Exhaustive search and flexible filtering of Active Directory ACEs.
  ☆71Updated 2 months ago
• Leo4j / PowerDACL
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆61Updated 6 months ago
• 123ojp / GREtunnel-scanner
  This is a GRE PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion
  ☆94Updated 4 months ago
• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆45Updated 10 months ago
• EspressoCake / DefenderPathExclusions
  Creation and removal of Defender path exclusions and exceptions in C#.
  ☆33Updated 2 years ago
• PShlyundin / TimeSync
  Tool to obtain hash using MS-SNTP for user accounts
  ☆28Updated 11 months ago
• decoder-it / NewMachineAccount
  ☆38Updated 10 months ago
• cybersectroll / TrollDump
  ☆83Updated last year
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆40Updated 2 years ago
• jfjallid / kerbtool
  A tool to interact with Kerberos to request, forge and convert various types of tickets in an Active Directory environment.
  ☆62Updated 7 months ago
• 0xbad53c / OffSecOps-Arsenal
  Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
  ☆45Updated last year
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆35Updated 2 years ago
• HulkOperator / AuthStager
  ☆59Updated last year
• y00ga-sec / Forensike
  Remotely dump NT hashes through Windows Crash dumps
  ☆34Updated last year
• lsecqt / SessionView
  A portable C# utility for enumerating local and remote windows sessions
  ☆54Updated 2 weeks ago
• leftp / SharpPXE
  A C# tool for extracting information from SCCM PXE boot media.
  ☆36Updated last week
• nyxgeek / autodiscover_enum
  time-based user enum via Basic Auth in Azure against Autodiscover
  ☆33Updated last year
• jsecu / ModTask
  ☆52Updated 3 months ago
• grayhatkiller / wambam-bof
  ☆47Updated last month
• EricEsquivel / OpsLoader
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆45Updated last year
• Xenov-X / csbot
  Golang Automation Framework for Cobalt Strike using the Rest API
  ☆56Updated last month
• nettitude / raccoon
  ☆53Updated 11 months ago
• nickvourd / Rocabella
  Sniffing files generator
  ☆59Updated 10 months ago
• MaorSabag / impacket-jump
  Remote service-staging tool built on Impacket, designed for BOF-style lateral movement workflows that lets you upload custom service load…
  ☆119Updated last month
• MzHmO / articles
  ☆45Updated 3 months ago