Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.
☆40Mar 23, 2024Updated last year
Alternatives and similar repositories for bqm
Users that are interested in bqm are comparing it to the libraries listed below
Sorting:
- SharpSvc is a simple code set to interact with the SC Manager API and is compatible with Cobalt Strike.☆26Aug 8, 2023Updated 2 years ago
- custom bloodhound queries and knowledge base☆12Apr 16, 2024Updated last year
- C# alternative to the linux "cat" command... Prints file contents to console. For use with Cobalt Strike's Execute-Assembly☆15Jul 15, 2021Updated 4 years ago
- Purple Team Dropper generator using open source templates.☆17May 23, 2024Updated last year
- Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+☆36Dec 1, 2025Updated 3 months ago
- Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets☆12Jun 21, 2021Updated 4 years ago
- ☆757Feb 3, 2026Updated last month
- Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations☆162Mar 1, 2024Updated 2 years ago
- SCEP request tool for AD CS and Intune☆74Oct 24, 2025Updated 4 months ago
- ☆160Feb 8, 2025Updated last year
- Claude MCP server to perform analysis on ROADrecon data☆49Mar 30, 2025Updated 11 months ago
- Code snippets to add on top of cobalt strike sleep mask to achieve patchless hook on AMSI and ETW☆86Mar 19, 2023Updated 3 years ago
- Reverse SOCKS5 Proxy Written in Rust☆28Mar 9, 2021Updated 5 years ago
- Federated Office365 user enumeration based on correlated response trend analysis☆49May 3, 2022Updated 3 years ago
- Simple script to extract useful informations from the combo BloodHound + Neo4j☆268Apr 4, 2025Updated 11 months ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆399Aug 15, 2025Updated 7 months ago
- A BOF port of the research of @thefLinkk and @codewhitesec☆100Oct 12, 2021Updated 4 years ago
- ☆10Updated this week
- Collection of cyphers for bloodhound☆157Jun 26, 2024Updated last year
- ☆21Dec 1, 2021Updated 4 years ago
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆97Apr 13, 2023Updated 2 years ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆413Mar 21, 2025Updated last year
- ☆20Mar 10, 2026Updated last week
- Virtualization Security Audit Tool - Security assess CIS compliance of a Virtualization environments☆15Nov 21, 2023Updated 2 years ago
- Impacket is a collection of Python classes for working with network protocols.☆303Jan 20, 2026Updated 2 months ago
- Dump NTDS with golden certificates and UnPAC the hash☆647Mar 20, 2024Updated 2 years ago
- Custom queries list for BloodHound☆32Jul 8, 2025Updated 8 months ago
- ☆16Oct 11, 2023Updated 2 years ago
- Attempt at Obfuscated version of SharpCollection☆248Nov 15, 2025Updated 4 months ago
- Azure Offensive Library☆17Oct 18, 2025Updated 5 months ago
- A dotnet executable to get an Entra token in an authenticated runtime☆17Oct 30, 2024Updated last year
- Shellcode loader designed for evasion. Coded in Rust.☆135Mar 5, 2023Updated 3 years ago
- rust clr heap encryption (https://github.com/lap1nou/CLR_Heap_encryption), but no heap encryption.☆17Jan 6, 2024Updated 2 years ago
- Aggressor script that gets the latest commands from CobaltStrikes web site and creates an aggressor script based on tool options.☆22Oct 6, 2021Updated 4 years ago
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆346Nov 19, 2024Updated last year
- ADCS abuser☆317Feb 6, 2023Updated 3 years ago
- Multithreaded C# .NET Assembly to enumerate accessible network shares in a domain☆34Nov 13, 2023Updated 2 years ago
- ☆39Mar 25, 2021Updated 4 years ago
- SACL Scanner is a tool designed to scan and analyze SACLs.☆51Feb 13, 2025Updated last year