Alternatives and similar repositories for ElevateKit:

Users that are interested in ElevateKit are comparing it to the libraries listed below

• JohnWoodman / remoteInjector
  Inject remote template link into word document for remote template injection
  ☆165Updated 3 years ago
• xpn / sccmwtf
  ☆144Updated last year
• garrettfoster13 / aced
  ☆155Updated 2 months ago
• SYANiDE- / SuperSharpShooter
  Payload Generation Framework
  ☆89Updated 10 months ago
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆259Updated 3 years ago
• zer1t0 / certi
  ADCS abuser
  ☆266Updated last year
• fortalice / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆317Updated 11 months ago
• RedSiege / jargon
  ☆127Updated 7 months ago
• t3hbb / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆79Updated 2 years ago
• calebstewart / bypass-clm
  PowerShell Constrained Language Mode Bypass
  ☆242Updated 3 years ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆168Updated last year
• slemire / WSPCoerce
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆229Updated last year
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆240Updated 3 months ago
• Luct0r / KerberOPSEC
  OPSEC safe Kerberoasting in C#
  ☆189Updated 2 years ago
• kaluche / bloodhound-quickwin
  Simple script to extract useful informations from the combo BloodHound + Neo4j
  ☆203Updated last year
• bitsadmin / chophound
  Some scripts to support with importing large datasets into BloodHound
  ☆79Updated last year
• nettitude / ETWHash
  C# POC to extract NetNTLMv1/v2 hashes from ETW provider
  ☆252Updated last year
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆185Updated last month
• powerseb / PowerExtract
  ☆113Updated last year
• jazzpizazz / BloodHound.py-Kerberos
  A Python based ingestor for BloodHound
  ☆83Updated 2 years ago
• rvazarkar / GMSAPasswordReader
  ☆205Updated last year
• 1njected / CMLoot
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares
  ☆166Updated last year
• Yaxxine7 / ASRepCatcher
  Make everyone in your VLAN ASRep roastable
  ☆168Updated this week
• Qazeer / OffensivePythonPipeline
  Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…
  ☆100Updated 2 years ago
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆116Updated 9 months ago
• fortalice / modifyCertTemplate
  ADCS cert template modification and ACL enumeration
  ☆131Updated last year
• buyne / OSEP-1
  ☆31Updated 3 years ago
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆102Updated last year
• Flangvik / ObfuscatedSharpCollection
  Attempt at Obfuscated version of SharpCollection
  ☆203Updated 2 weeks ago
• guervild / uru
  ☆81Updated last year