Alternatives and similar repositories for Shou

Users that are interested in Shou are comparing it to the libraries listed below

• zimedev / certipy-merged
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆164Updated 3 months ago
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆193Updated 2 weeks ago
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆158Updated 2 weeks ago
• mallo-m / Cpp-ExecAssembly
  C++ Reflective Assembly Loader
  ☆27Updated 4 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆201Updated 4 months ago
• NeffIsBack / wsuks
  Automating the MITM attack on WSUS
  ☆233Updated last week
• adityatelange / evil-winrm-py
  Execute commands interactively on remote Windows machines using the WinRM protocol
  ☆173Updated last week
• decoder-it / KrbRelay-SMBServer
  ☆220Updated 9 months ago
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆232Updated 4 months ago
• TheManticoreProject / FindGPPPasswords
  A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts
  ☆159Updated 2 weeks ago
• cybrly / badsuccessor
  ☆110Updated last month
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆205Updated 5 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆167Updated 2 months ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆260Updated 2 weeks ago
• akamai / BadSuccessor
  ☆185Updated last month
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆239Updated 2 months ago
• 0xNinjaCyclone / EarlyCascade
  A PoC for Early Cascade process injection technique.
  ☆186Updated 5 months ago
• login-securite / conpass
  Continuous password spraying tool
  ☆191Updated 4 months ago
• RedTeamPentesting / keycred
  Generate and Manage KeyCredentialLinks
  ☆159Updated last week
• dreamkinn / CompileCSDocker
  Compile SharpHound and others on Linux
  ☆24Updated 11 months ago
• zh54321 / SnafflerParser
  Parses Snaffler output file and generate beautified outputs.
  ☆105Updated 5 months ago
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆123Updated 5 months ago
• logangoins / SharpSuccessor
  SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
  ☆321Updated last month
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆227Updated last month
• Macmod / ldapx
  Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
  ☆157Updated 6 months ago
• badsectorlabs / sccm-http-looter
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆189Updated 9 months ago
• Anon-Exploiter / sliver-cheatsheet
  Sliver CheatSheet for OSEP
  ☆89Updated last month
• CompassSecurity / bloodhoundce-resources
  ☆63Updated last month
• AetherBlack / abuseACL
  A python script to automatically list vulnerable Windows ACEs/ACLs.
  ☆57Updated 3 weeks ago
• andreisss / Ghosting-AMSI
  Ghosting-AMSI
  ☆205Updated 2 months ago