Friends-Security / ShadowHoundLinks
PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirectory module (ADWS) or System.DirectoryServices class (LDAP).
☆367Updated last month
Alternatives and similar repositories for ShadowHound
Users that are interested in ShadowHound are comparing it to the libraries listed below
Sorting:
- A BloodHound collector for Microsoft Configuration Manager☆328Updated 5 months ago
- Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data☆286Updated last week
- Some scripts to abuse kerberos using Powershell☆341Updated last year
- Active Directory Auditing and Enumeration☆459Updated last week
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆385Updated 2 months ago
- A security assessment tool for analyzing Active Directory Group Policy Objects (GPOs) to identify misconfigurations and vulnerabilities☆254Updated 2 months ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆425Updated 3 months ago
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆310Updated 7 months ago
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆597Updated last month
- Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀☆211Updated this week
- Abusing Azure services over C2☆340Updated 3 weeks ago
- ☆183Updated 2 weeks ago
- Assess the security of your Active Directory with few or all privileges.☆320Updated 2 weeks ago
- ☆221Updated 2 weeks ago
- ☆177Updated last month
- Lab used for workshop and CTF☆250Updated last month
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆240Updated this week
- winPEAS, but for Active Directory☆150Updated 2 months ago
- ☆322Updated 2 months ago
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆231Updated 4 months ago
- A tool to query for the existence of pre-windows 2000 computer objects.☆337Updated last month
- MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.☆294Updated 10 months ago
- Weaponizing DCOM for NTLM Authentication Coercions☆229Updated 2 months ago
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆221Updated last month
- Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…☆129Updated last year
- A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts☆155Updated 2 weeks ago
- ☆315Updated 3 months ago
- ☆199Updated 2 weeks ago
- Make everyone in your VLAN ASRep roastable☆198Updated 3 months ago
- Tool to remotely dump secrets from the Windows registry☆465Updated 2 weeks ago