Alternatives and similar repositories for vnum

Users that are interested in vnum are comparing it to the libraries listed below

• p0dalirius / GhostSPN
  List accounts with Service Principal Names (SPN) not linked to active dns records in an Active Directory Domain.
  ☆19Updated 3 months ago
• ricardojoserf / http-protocol-exfil
  Exfiltrate files using the HTTP protocol version ("HTTP/1.0" is a 0 and "HTTP/1.1" is a 1)
  ☆23Updated 3 years ago
• Aetsu / drakus
  Drakus allows you to monitor the artifacts and domains used in a Red Team exercise to see if they have been uploaded to certain online ma…
  ☆13Updated 4 years ago
• octopwn / wsnet-dotnet
  ☆13Updated 4 months ago
• duckbillsecurity / pdf-smuggler
  Create PDFs with HTML smuggling attachments that save on opening the document.
  ☆29Updated last year
• shlyuz / teamserver
  ☆12Updated 2 years ago
• sourcefrenchy / DEFCON-30---Exotic-Data-Exfiltration
  Slides from my talk at the Adversary Village, Defcon 30
  ☆29Updated 2 years ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 2 years ago
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆39Updated last year
• OOAFA / squeegee
  A collection of tools using OCR to extract potential usernames from RDP screenshots.
  ☆30Updated last year
• p0dalirius / FindAzureDomainTenant
  A Python script to find tenant id an region from a list of domain names.
  ☆14Updated 3 months ago
• Syslifters / split-bloodhound
  ☆18Updated last year
• horizon3ai / Ivanti-EPM-Coercion-Vulnerabilities
  Proof of concept exploit for Ivanti EPM CVE-2024-13159 and others
  ☆11Updated 3 months ago
• matro7sh / havoc-gosecdump
  ☆18Updated 6 months ago
• ChoiSG / GwisinMsi
  PoC MSI payload based on ASEC/AhnLab's blog post
  ☆23Updated 2 years ago
• MythicC2Profiles / httpx
  Configurable, Community driven, HTTP C2 Profile
  ☆17Updated 2 months ago
• Octoberfest7 / aggressor_snippets
  A collection of random small Aggressor snippets that don't warrant their own repo
  ☆23Updated 2 years ago
• snovvcrash / peas
  Modified version of PEAS client for offensive operations
  ☆41Updated 2 years ago
• Allevon412 / BreadBear
  A PoC~ish of https://elastic.github.io/security-research/malware/2022/01/01.operation-bleeding-bear/article/
  ☆31Updated last year
• nyxgeek / rpcfiend
  Use rpc null sessions to retrieve machine list, domain admin list, domain controllers
  ☆14Updated 2 years ago
• Cobalt-Strike / ZeroLogon-BOF
  ☆12Updated 4 years ago
• CompassSecurity / PowerLsassSilentProcessExit
  ☆25Updated 3 years ago
• knavesec / BloodHound-Custom-Queries
  Assorted BloodHound Cypher queries/tricks I haven't seen in other cheat sheets
  ☆12Updated 3 years ago
• MrTuxx / aad-sso-enum-brute-spray
  Proof of Concept in Go from Secureworks' research on Azure Active Directory Brute-Force Attacks. Inspired by @treebuilder's POC on PowerS…
  ☆14Updated 3 years ago
• hyd3sec / MultiThreaded_C2_With_Keylogger
  Multi-threaded C2 framework built in Flask with keylogger - from the Offensive C# Course by Naga Sai Nikhil
  ☆21Updated 2 years ago
• magisterquis / shelloverreversessh
  A little implant which SSH's back with a shell
  ☆38Updated 3 years ago
• NVISOsecurity / cobalt-strike-notifier
  ☆14Updated 3 years ago
• xforcered / CheckCert
  Obtain and parse SSL certificates
  ☆10Updated 3 years ago
• m8sec / EAPrimer
  C# project to Reflectively load .Net assemblies in memory
  ☆17Updated 11 months ago
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated last year