Friends-Security / ShadowHoundLinks
PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirectory module (ADWS) or System.DirectoryServices class (LDAP).
☆377Updated 3 months ago
Alternatives and similar repositories for ShadowHound
Users that are interested in ShadowHound are comparing it to the libraries listed below
Sorting:
- Some scripts to abuse kerberos using Powershell☆342Updated 2 years ago
- A BloodHound collector for Microsoft Configuration Manager☆345Updated last month
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆394Updated last month
- Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data☆309Updated this week
- Assess the security of your Active Directory with few or all privileges.☆327Updated 2 months ago
- ☆185Updated 2 months ago
- Active Directory Auditing and Enumeration☆473Updated last month
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆324Updated 9 months ago
- A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts☆163Updated last month
- Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀☆295Updated 2 months ago
- Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…☆233Updated 4 months ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆427Updated 5 months ago
- Tool to remotely dump secrets from the Windows registry☆480Updated 2 months ago
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆366Updated 6 months ago
- LudusHound is a tool for red and blue teams that transforms BloodHound data into a fully functional, Active Directory replica environment…☆273Updated last month
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆241Updated 6 months ago
- gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory env…☆235Updated last week
- A security assessment tool for analyzing Active Directory Group Policy Objects (GPOs) to identify misconfigurations and vulnerabilities☆262Updated 5 months ago
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆285Updated 2 weeks ago
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆240Updated 3 months ago
- ☆330Updated 2 months ago
- PXEThief is a set of tooling that can extract passwords from the Operating System Deployment functionality in Microsoft Endpoint Configur…☆386Updated last year
- ☆193Updated 3 months ago
- Automatically run and populate a new instance of BH CE☆98Updated 3 weeks ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆611Updated 3 months ago
- Lab used for workshop and CTF☆268Updated 2 weeks ago
- MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.☆301Updated last year
- KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).☆254Updated 3 weeks ago
- winPEAS, but for Active Directory☆155Updated 4 months ago
- SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.☆332Updated 3 months ago