Alternatives and similar repositories for Find-LocalAdminAccess

Users that are interested in Find-LocalAdminAccess are comparing it to the libraries listed below

• Leo4j / Tools
  ☆16Updated last week
• RedSiege / CredCheck
  .NET wrapper around LogonUserA to test creds
  ☆12Updated 3 years ago
• 4ndr34z / prenum
  ☆28Updated 2 years ago
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆56Updated last year
• k3nundrum / redteamtips
  ☆15Updated last year
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆25Updated last year
• outflanknl / RedELK-workshop
  Items related to the RedELK workshop given at security conferences
  ☆29Updated last year
• duckbillsecurity / pdf-smuggler
  Create PDFs with HTML smuggling attachments that save on opening the document.
  ☆30Updated 2 weeks ago
• MythicC2Profiles / discord
  Discord C2 Profile for Mythic
  ☆30Updated 4 months ago
• maliciousgroup / GOADvSphere
  A vSphere deployment of GOADv2 BETA Testing (v0.1)
  ☆26Updated last year
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated last year
• AlteredSecurity / RBCD
  Script written in python to perform Resource-Based Constrained Delegation (RBCD) attack by leveraging Impacket toolkit.
  ☆21Updated 4 years ago
• Leo4j / Invoke-ShareHunter
  Enumerate the Domain for Readable and Writable Shares
  ☆20Updated 4 months ago
• redr0nin / badgerDAPS
  Brute Ratel LDAP filtering and sorting tool. Easily take BR log output and pull hostnames for ease of use with other red team tooling. Su…
  ☆38Updated last year
• LuemmelSec / CVE-2023-29357
  ☆52Updated last year
• synacktiv / kcmdump
  Dump Kerberos tickets from the KCM database of SSSD
  ☆50Updated 10 months ago
• knavesec / o365fedenum
  Federated Office365 user enumeration based on correlated response trend analysis
  ☆51Updated 3 years ago
• Workingdaturah / BOF-Learning
  Cobalt Strike BOFS
  ☆16Updated last year
• 0xe7 / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆42Updated 3 months ago
• DXC-StrikeForce / Nemesis-Ansible
  Automatically deploy Nemesis
  ☆21Updated last year
• MythicC2Profiles / slack
  ☆3Updated 6 months ago
• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆43Updated 4 months ago
• watchtowrlabs / watchTowr-vs-FortiWeb-CVE-2025-25257
  ☆30Updated this week
• zblurx / BloodHoundCustomQueries
  My BloodHound custom queries
  ☆24Updated 2 years ago
• GeorgePatsias / AskCreds-CS
  A BOF tool that can be used to collect passwords using CredUIPromptForWindowsCredentialsName.
  ☆15Updated 3 years ago
• Leo4j / PowerDACL
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆56Updated this week
• ZarvisD / Azure-AD
  Azure pentesting reference for Altered Security Lab
  ☆24Updated 3 years ago
• blurbdust / ldd2bh
  Convert ldapdomaindump to Bloodhound
  ☆80Updated last year
• OOAFA / squeegee
  A collection of tools using OCR to extract potential usernames from RDP screenshots.
  ☆30Updated last year
• deeexcee-io / LOI-Bins
  Abusing Remote Windows SMB Shares for Fun and Pen Testing
  ☆15Updated 2 years ago