Alternatives and similar repositories for Shou

Users that are interested in Shou are comparing it to the libraries listed below

• dreamkinn / babble
  Python passive host discovery script
  ☆11Updated 10 months ago
• ozelis / winrmexec
  Impack-only implementation of WinRM protocol with support for NTLM and Kerberos auth
  ☆117Updated 3 months ago
• mallo-m / Cpp-ExecAssembly
  C++ Reflective Assembly Loader
  ☆30Updated 11 months ago
• Yaxxine7 / ASRepCatcher
  Make everyone in your VLAN ASRep roastable
  ☆245Updated 4 months ago
• LightxR / pwnAD
  Active Directory Enumeration and Exploitation
  ☆12Updated last week
• didntchooseaname / Altered-Security-Reporting
  A generic sysreptor template to write on-premise related Altered Security's certifications reports of compromission.
  ☆23Updated 5 months ago
• t1Sh1n4 / Invoke-SPSI
  Invoke-SPSI - Simple PowerShell Shellcode Injector
  ☆37Updated 4 months ago
• adityatelange / evil-winrm-py
  Execute commands interactively on remote Windows machines using the WinRM protocol
  ☆323Updated 2 weeks ago
• Anon-Exploiter / sliver-cheatsheet
  Sliver CheatSheet for OSEP
  ☆242Updated 2 months ago
• zimedev / certipy-merged
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆163Updated 9 months ago
• b5null / Invoke-BadSuccessor.ps1
  PowerShell Script to automatically abuse the BadSuccessor vulnerability (CVE-2025-53779)
  ☆44Updated 2 months ago
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆173Updated last month
• akamai / BadSuccessor
  ☆235Updated 8 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆244Updated 3 months ago
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆213Updated 3 weeks ago
• TheImposterz / ADMR
  Active Directory Mindmap Recipes: A Compromise à la Carte
  ☆148Updated 5 months ago
• sikumy / spearspray
  Enhance Your Active Directory Password Spraying with User Intelligence.
  ☆312Updated last month
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆275Updated 7 months ago
• g0h4n / RustHound-CE
  Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀
  ☆444Updated 3 weeks ago
• bytewreck / DumpGuard
  Proof-of-Concept tool for extracting NTLMv1 hashes from sessions on modern Windows systems.
  ☆556Updated 3 months ago
• n3rada / MSSQLand
  Interract with Microsoft SQL Server (MS SQL | MSSQL) servers and their linked instances in restricted environments, without the need for …
  ☆52Updated this week
• TheManticoreProject / FindGPPPasswords
  A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts
  ☆167Updated 7 months ago
• ar0x4 / DockPiler
  ☆19Updated last month
• toneemarqus / Shadow-Command-C2-Framework
  ☆37Updated 6 months ago
• 1r0BIT / TaskHound
  Tool to enumerate privileged Scheduled Tasks on Remote Systems
  ☆276Updated 3 weeks ago
• logangoins / SharpSuccessor
  SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
  ☆382Updated 4 months ago
• ProcessusT / Automated-C2
  Automate your C2 creation with Azure Frontdoor and randomly generated options
  ☆15Updated last year
• The-Viper-One / OSEP-Notes
  Various notes I have compiled during the OSEP PEN-300 course.
  ☆36Updated 10 months ago
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆358Updated last week
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆260Updated 11 months ago