Alternatives and similar repositories for Shwmae

Users that are interested in Shwmae are comparing it to the libraries listed below

• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆155Updated last year
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆151Updated 9 months ago
• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆82Updated last month
• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆115Updated last year
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆202Updated last year
• absolomb / FindMeAccess
  ☆99Updated last week
• trustedsec / specula
  ☆201Updated last month
• ZERODETECTION / MSC_Dropper
  ☆182Updated 11 months ago
• decoder-it / KrbRelay-SMBServer
  ☆220Updated 9 months ago
• c0nf1den71al / Lodestar-Forge
  Easy to use, open-source infrastructure management platform, crafted specifically for red team engagements.
  ☆75Updated last week
• sevagas / Advanced_Initial_access_in_2024_OffensiveX
  Resources linked to my presentation at OffensiveX in Athens in June 2024 on the topic "Breach the Gat, Advanced Initial Access in 2024"
  ☆142Updated 11 months ago
• mandiant / ccmpwn
  ☆206Updated last year
• CCob / DRSAT
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆246Updated 6 months ago
• Thunter-HackTeam / EvilentCoerce
  ☆140Updated 2 months ago
• denniskniep / DeviceCodePhishing
  This is a novel technique that leverages the well-known Device Code phishing approach. It dynamically initiates the flow when the victim …
  ☆152Updated 2 months ago
• 3lp4tr0n / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆154Updated 2 weeks ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆92Updated 2 months ago
• badsectorlabs / sccm-http-looter
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆189Updated 9 months ago
• t94j0 / adexplorersnapshot-rs
  ☆82Updated 11 months ago
• decoder-it / KrbRelayEx-RPC
  ☆186Updated 3 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆201Updated 4 months ago
• Flangvik / QRucible
  Python utility that generates "imageless" QR codes in various formats
  ☆124Updated 11 months ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆258Updated 2 weeks ago
• trustedsec / DitExplorer
  Tool for viewing NTDS.dit
  ☆173Updated 4 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆140Updated 11 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆119Updated 2 weeks ago
• xforcered / ForsHops
  ForsHops
  ☆141Updated 3 months ago
• temp43487580 / EntraPassTheCert
  tool for requesting Entra ID's P2P certificate and authenticating remote Entra joinned devices with it
  ☆114Updated 3 weeks ago
• 1njected / CMLoot
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares
  ☆175Updated 2 years ago
• morRubin / NegoExRelay
  ☆89Updated 2 years ago