Alternatives and similar repositories for ntlmthief

Users that are interested in ntlmthief are comparing it to the libraries listed below

• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆56Updated last year
• myexploit / living_off_the_land
  ☆44Updated 10 months ago
• truerustyy / wcreddump
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆75Updated 6 months ago
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆40Updated last year
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆80Updated 8 months ago
• MythicC2Profiles / discord
  Discord C2 Profile for Mythic
  ☆29Updated 3 months ago
• OffsecDeer / TargetedTimeroast
  Tamper Active Directory user attributes to collect their hashes with MS-SNTP
  ☆36Updated 4 months ago
• 4ndr34z / prenum
  ☆27Updated 2 years ago
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated last year
• HernanRodriguez1 / Bypass-AMSI
  ☆47Updated 3 years ago
• net-dawg / SSHniffer
  ☆35Updated last year
• Primusinterp / PrimusC2
  A C2 framework built for my bachelors thesis
  ☆55Updated 7 months ago
• 0xAbdullah / Offensive-Snippets
  A repository with my code snippets for research/education purposes.
  ☆50Updated last year
• LuemmelSec / CVE-2023-29357
  ☆52Updated last year
• macrl2000 / reaper-wu
  vulnlab.com reaper writeup
  ☆26Updated last year
• LuemmelSec / Moodle-Scanner
  A Moodle Scanner
  ☆42Updated 6 months ago
• smokeme / PDFator
  ☆27Updated last year
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• Helixo32 / GetSystem-LCI
  GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…
  ☆34Updated 6 months ago
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• n0tspam / RunspaceLoader
  Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe
  ☆13Updated last year
• LaresLLC / OffensiveSysAdmin
  A collection of tools Neil and Andy have been working on released in one place and interlinked with previous tools
  ☆88Updated last year
• Lucreza / WinDefExclusionFinder
  Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges
  ☆23Updated 6 months ago
• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆37Updated 6 months ago
• aleemladha / SANS-Workshop-Lab
  SANS Workshop: Active Directory Privilege Escalation with Empire!
  ☆30Updated 2 months ago
• dadevel / mssql-spider
  Automated exploitation of MSSQL servers at scale
  ☆108Updated last week
• Acceis / bqm
  Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.
  ☆38Updated last year
• nullenc0de / Internal_Pentest
  Scripts that automate portions of pentests.
  ☆50Updated last month
• g0h4n / RDE1
  RDE1 (Rusty Data Exfiltrator) is client and server tool allowing auditor to extract files from DNS and HTTPS protocols written in Rust. �…
  ☆40Updated last month
• mertdas / SharpLateral
  Lateral Movement
  ☆125Updated last year