Alternatives and similar repositories for rpc2efs

Users that are interested in rpc2efs are comparing it to the libraries listed below

• grayhatkiller / SharpExShell

  View on GitHub
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆75May 1, 2024Updated last year
• outflanknl / regcertipy

  View on GitHub
  Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does
  ☆94Jul 3, 2025Updated 7 months ago
• bot984397 / eepy

  View on GitHub
  ☆38Apr 15, 2025Updated 9 months ago
• Xenov-X / csbot

  View on GitHub
  Golang Automation Framework for Cobalt Strike using the Rest API
  ☆56Dec 4, 2025Updated 2 months ago
• klezVirus / RAIWhateverTrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying - X
  ☆155Jul 23, 2025Updated 6 months ago
• logangoins / BadTakeover-BOF

  View on GitHub
  Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover
  ☆85Oct 20, 2025Updated 3 months ago
• jojonas / SharpSAMDump

  View on GitHub
  SAM Dumping in C#
  ☆54Nov 27, 2025Updated 2 months ago
• sudonoodle / BOF-entra-authcode-flow

  View on GitHub
  Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
  ☆122Jan 17, 2026Updated 3 weeks ago
• lsecqt / SessionView

  View on GitHub
  A portable C# utility for enumerating local and remote windows sessions
  ☆55Jan 1, 2026Updated last month
• SafeBreach-Labs / RPC-Racer

  View on GitHub
  Toolset to manipulate RPC clients by finding delayed services and masquerading as them
  ☆107Aug 18, 2025Updated 5 months ago
• zyn3rgy / smbtakeover

  View on GitHub
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆345Nov 19, 2024Updated last year
• Nomad0x7 / sekken-enum

  View on GitHub
  adws enumeration bof
  ☆162Oct 2, 2025Updated 4 months ago
• Sagar-Jangam / DNSUpdate

  View on GitHub
  A python based script to update DNS entries in ADIDNS
  ☆43Apr 12, 2024Updated last year
• Teach2Breach / noldr

  View on GitHub
  Dynamically resolve API function addresses at runtime in a secure manner.
  ☆72Nov 11, 2025Updated 3 months ago
• synacktiv / GroupPolicyBackdoor

  View on GitHub
  Group Policy Objects manipulation and exploitation framework
  ☆289Dec 7, 2025Updated 2 months ago
• CrowdStrike / sccmhound

  View on GitHub
  A BloodHound collector for Microsoft Configuration Manager
  ☆363Jul 7, 2025Updated 7 months ago
• ricardojoserf / AutoPtT

  View on GitHub
  Automated Pass-the-Ticket (PtT) attack. Standalone alternative to Rubeus and Mimikatz for this attack, implemented in C++ and Python.
  ☆87Updated this week
• 0xthirteen / Carseat

  View on GitHub
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆270Nov 12, 2024Updated last year
• EvanMcBroom / lsa-whisperer

  View on GitHub
  Tools for interacting with authentication packages using their individual message protocols
  ☆368Feb 1, 2026Updated last week
• CCob / DRSAT

  View on GitHub
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆273Dec 27, 2024Updated last year
• andrecrafts / Bloodhound-query-legacy2ce

  View on GitHub
  A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …
  ☆34Oct 1, 2025Updated 4 months ago
• wotwot563 / aad_prt_bof

  View on GitHub
  ☆156Apr 17, 2024Updated last year
• N4kedTurtle / SharpTeamsDump

  View on GitHub
  Dump Teams conversations
  ☆19Jun 9, 2021Updated 4 years ago
• synacktiv / CVE-2024-43468

  View on GitHub
  ☆94Jan 16, 2025Updated last year
• xforcered / ForsHops

  View on GitHub
  ForsHops
  ☆152Mar 25, 2025Updated 10 months ago
• xforcered / Being-A-Good-CLR-Host

  View on GitHub
  ☆139Jan 16, 2025Updated last year
• kfallahi / UnderlayCopy

  View on GitHub
  PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads
  ☆238Oct 30, 2025Updated 3 months ago
• rtecCyberSec / RAITrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying
  ☆168Jul 22, 2025Updated 6 months ago
• synacktiv / gpoParser

  View on GitHub
  gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory env…
  ☆328Jan 14, 2026Updated 3 weeks ago
• almandin / krbjack

  View on GitHub
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆136Jan 22, 2025Updated last year
• inzlain / sameuser

  View on GitHub
  Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
  ☆14Jul 13, 2022Updated 3 years ago
• Cobalt-Strike / udc2-vs

  View on GitHub
  User-Defined C2 BOF Template
  ☆27Nov 24, 2025Updated 2 months ago
• JamesCooteUK / BOFs

  View on GitHub
  Collection of BOFs for Cobalt Strike
  ☆33Mar 28, 2023Updated 2 years ago
• slygoo / pssrecon

  View on GitHub
  ☆40Oct 8, 2024Updated last year
• MythicMeta / Mythic_Scripting

  View on GitHub
  Mythic Scripting PyPi package - mythic
  ☆28Oct 10, 2025Updated 4 months ago
• garrettfoster13 / mssqlkaren

  View on GitHub
  modified mssqlclient from impacket to extract policies from the SCCM database
  ☆42Nov 4, 2025Updated 3 months ago
• Thunter-HackTeam / EvilentCoerce

  View on GitHub
  ☆159May 5, 2025Updated 9 months ago
• Cobalt-Strike / icmp-udc2

  View on GitHub
  UDC2 implementation that provides an ICMP C2 channel
  ☆115Nov 24, 2025Updated 2 months ago
• monsieurPale / BreakFAST

  View on GitHub
  Proof of concept for Kerberos Armoring abuse.
  ☆78Dec 12, 2025Updated 2 months ago