Alternatives and similar repositories for ASREPRoast

Users that are interested in ASREPRoast are comparing it to the libraries listed below

• sensepost / UserEnum
  Domain user enumeration tool
  ☆215Updated last year
• quickbreach / ExchangeRelayX
  An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.
  ☆308Updated 2 years ago
• GhostPack / SharpRoast
  DEPRECATED SharpRoast is a C# port of various PowerView's Kerberoasting functionality.
  ☆252Updated 6 years ago
• HarmJ0y / DAMP
  The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification
  ☆381Updated 6 years ago
• nopfor / ntlm_challenger
  Parse NTLM challenge messages over HTTP and SMB
  ☆150Updated 2 years ago
• vletoux / SpoolerScanner
  Check if MS-RPRN is remotely available with powershell/c#
  ☆173Updated 6 years ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆168Updated 3 years ago
• vletoux / MakeMeEnterpriseAdmin
  ☆257Updated 3 years ago
• vysecurity / Aggressor-VYSEC
  ☆210Updated 6 years ago
• kfosaaen / Get-LAPSPasswords
  Powershell function to pull the local admin passwords from LDAP, stored there by LAPS.
  ☆120Updated 5 years ago
• outflanknl / Recon-AD
  Recon-AD, an AD recon tool based on ADSI and reflective DLL’s
  ☆333Updated 5 years ago
• decoder-it / juicy-potato
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆63Updated 6 years ago
• RedSiege / AggressorAssessor
  Aggressor scripts for phases of a pen test or red team assessment
  ☆183Updated last year
• codewhitesec / LethalHTA
  Lateral Movement technique using DCOM and HTA
  ☆232Updated 2 years ago
• fullmetalcache / PowerLine
  ☆306Updated 6 years ago
• TBGSecurity / splunk_shells
  Weaponizing Splunk with reverse and bind shells.
  ☆183Updated 8 years ago
• mdsecactivebreach / PowerDNS
  PowerDNS: Powershell DNS Delivery
  ☆213Updated 6 years ago
• 001SPARTaN / aggressor_scripts
  A collection of useful scripts for Cobalt Strike
  ☆173Updated last year
• decoder-it / powershellveryless
  Constrained Language Mode + AMSI bypass all in one
  ☆159Updated 6 years ago
• Mr-Un1k0d3r / PoisonHandler
  lateral movement techniques that can be used during red team exercises
  ☆272Updated 5 years ago
• ramen0x3f / AggressorScripts
  ☆272Updated 3 years ago
• fox-it / cve-2019-1040-scanner
  ☆298Updated 4 years ago
• ryhanson / ExternalC2
  A library for integrating communication channels with the Cobalt Strike External C2 server
  ☆285Updated 7 years ago
• fox-it / Invoke-ACLPwn
  ☆526Updated 2 years ago
• HarmJ0y / TrustVisualizer
  Python script that takes new output from Get-DomainTrustMapping .csvs and outputs graphml. Based on DomainTrustExplorer.
  ☆97Updated last year
• bohops / GhostBuild
  GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects
  ☆248Updated 4 years ago
• khr0x40sh / WhiteListEvasion
  Collection of scripts, binaries and the like to aid in WhiteList Evasion on a Microsoft Windows Network.
  ☆128Updated 10 years ago
• soffensive / windowsblindread
  A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system
  ☆204Updated 2 years ago
• invokethreatguy / AggressorCollection
  Collection of awesome Cobalt Strike Aggressor Scripts. All credit due to the authors
  ☆154Updated 6 years ago
• preempt / ntlm-scanner
  A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities
  ☆204Updated 4 years ago