Alternatives and similar repositories for Shou

Users that are interested in Shou are comparing it to the libraries listed below

• dreamkinn / babble
  Python passive host discovery script
  ☆11Updated 8 months ago
• didntchooseaname / Altered-Security-Reporting
  A generic sysreptor template to write on-premise related Altered Security's certifications reports of compromission.
  ☆21Updated 3 months ago
• LightxR / pwnAD
  Active Directory Enumeration and Exploitation
  ☆11Updated 4 months ago
• Yaxxine7 / ASRepCatcher
  Make everyone in your VLAN ASRep roastable
  ☆240Updated 2 months ago
• TheImposterz / ADMR
  Active Directory Mindmap Recipes: A Compromise à la Carte
  ☆143Updated 3 months ago
• adityatelange / evil-winrm-py
  Execute commands interactively on remote Windows machines using the WinRM protocol
  ☆295Updated last month
• ozelis / winrmexec
  Impack-only implementation of WinRM protocol with support for NTLM and Kerberos auth
  ☆111Updated last month
• t1Sh1n4 / Invoke-SPSI
  Invoke-SPSI - Simple PowerShell Shellcode Injector
  ☆36Updated 2 months ago
• Anon-Exploiter / sliver-cheatsheet
  Sliver CheatSheet for OSEP
  ☆220Updated 2 weeks ago
• zimedev / certipy-merged
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆163Updated 7 months ago
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆171Updated last month
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆211Updated 5 months ago
• mallo-m / Cpp-ExecAssembly
  C++ Reflective Assembly Loader
  ☆29Updated 9 months ago
• TheManticoreProject / FindGPPPasswords
  A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts
  ☆165Updated 5 months ago
• akamai / BadSuccessor
  ☆223Updated 6 months ago
• sikumy / spearspray
  Enhance Your Active Directory Password Spraying with User Intelligence.
  ☆300Updated 3 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆242Updated last month
• boku7 / venom
  Venom C2 is a dependency‑free Python3 Command & Control framework for redteam persistence
  ☆399Updated last month
• 0xBugatti / myAwesome
  ☆222Updated 8 months ago
• n3rada / MSSQLand
  Interract with Microsoft SQL Server (MS SQL | MSSQL) servers and their linked instances in restricted environments, without the need for …
  ☆47Updated 2 weeks ago
• logangoins / SharpSuccessor
  SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
  ☆364Updated 2 months ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆275Updated 5 months ago
• Ximoxkil547 / undetectableRevShell
  This repo is for the youtube video where we have explained how to make a detectable reverse shell undetectable by windows defender
  ☆29Updated last year
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆255Updated 9 months ago
• MorDavid / NetworkHound
  Advanced Active Directory network topology analyzer with SMB validation, multiple authentication methods (password/NTLM/Kerberos), and co…
  ☆627Updated last month
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆334Updated this week
• b5null / Invoke-BadSuccessor.ps1
  PowerShell Script to automatically abuse the BadSuccessor vulnerability (CVE-2025-53779)
  ☆33Updated 3 weeks ago
• Pennyw0rth / NetExec-Lab
  Lab used for workshop and CTF
  ☆384Updated last week
• CompassSecurity / bloodhoundce-resources
  ☆85Updated last week
• ProcessusT / Automated-C2
  Automate your C2 creation with Azure Frontdoor and randomly generated options
  ☆15Updated last year