Alternatives and similar repositories for Penetration

Users that are interested in Penetration are comparing it to the libraries listed below

• BlackSnufkin / Invoke-DumpMDEConfig
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆149Updated last year
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆239Updated 2 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆173Updated last month
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆64Updated 5 months ago
• Thunter-HackTeam / EvilentCoerce
  ☆140Updated 2 months ago
• DarkSpaceSecurity / RunAs-Stealer
  RunAs Utility Credential Stealer implementing 3 techniques : Hooking CreateProcessWithLogonW, Smart Keylogging, Remote Debugging
  ☆194Updated 4 months ago
• login-securite / conpass
  Continuous password spraying tool
  ☆191Updated 4 months ago
• Aur3ns / LsassStealer
  Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…
  ☆105Updated 3 weeks ago
• t3l3machus / ACEshark
  ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…
  ☆113Updated 6 months ago
• adityatelange / evil-winrm-py
  Execute commands interactively on remote Windows machines using the WinRM protocol
  ☆167Updated 2 weeks ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆147Updated last year
• synacktiv / CVE-2024-43468
  ☆89Updated 5 months ago
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆129Updated 5 months ago
• Darkrain2009 / RedExt
  Chrome browser extension-based Command & Control
  ☆152Updated last week
• ShutdownRepo / dcshadow
  Python alternative to Mimikatz lsadump::dcshadow
  ☆140Updated 3 weeks ago
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆193Updated 2 weeks ago
• rvrsh3ll / Bolthole
  Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.
  ☆205Updated 2 months ago
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆202Updated last year
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆167Updated 2 months ago
• cybrly / badsuccessor
  ☆109Updated last month
• cisagov / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆104Updated this week
• NeffIsBack / wsuks
  Automating the MITM attack on WSUS
  ☆233Updated this week
• NtDallas / Svartalfheim
  Stage 0
  ☆161Updated 6 months ago
• decoder-it / KrbRelayEx-RPC
  ☆186Updated 3 months ago
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆204Updated 5 months ago
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆165Updated last week
• RePRGM / Nimperiments
  Various one-off pentesting projects written in Nim. Updates happen on a whim.
  ☆161Updated this week
• django-88 / NomadScanner
  ☆163Updated 2 months ago
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆202Updated 8 months ago
• CICADA8-Research / LogHunter
  Opsec tool for finding user sessions by analyzing event log files through RPC (MS-EVEN)
  ☆71Updated last year