Alternatives and similar repositories for Invoke-SessionHunter

Users that are interested in Invoke-SessionHunter are comparing it to the libraries listed below

• login-securite / conpass
  Continuous password spraying tool
  ☆186Updated 3 months ago
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆306Updated 6 months ago
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆224Updated 3 months ago
• TheManticoreProject / FindGPPPasswords
  A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts
  ☆153Updated last month
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆229Updated 2 weeks ago
• almandin / krbjack
  A Kerberos AP-REQ hijacking tool with DNS unsecure updates abuse.
  ☆126Updated 4 months ago
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆211Updated 2 weeks ago
• decoder-it / KrbRelay-SMBServer
  ☆219Updated 7 months ago
• Tanguy-Boisset / bloodhound-automation
  Automatically run and populate a new instance of BH CE
  ☆81Updated last month
• zimedev / certipy-merged
  Tool for Active Directory Certificate Services enumeration and abuse
  ☆161Updated last month
• ad0nis / ntlm_relay_gat
  ☆158Updated last year
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆170Updated 2 weeks ago
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆156Updated 4 months ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆177Updated 2 years ago
• akamai / BadSuccessor
  ☆162Updated 2 weeks ago
• Yaxxine7 / ASRepCatcher
  Make everyone in your VLAN ASRep roastable
  ☆192Updated 3 months ago
• asmtlab / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆102Updated 7 months ago
• powerseb / PowerExtract
  ☆117Updated 2 months ago
• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆74Updated last week
• Friends-Security / SharpExclusionFinder
  Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …
  ☆209Updated 7 months ago
• zh54321 / SnafflerParser
  Parses Snaffler output file and generate beautified outputs.
  ☆100Updated 4 months ago
• logangoins / SharpSuccessor
  SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
  ☆278Updated last week
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆200Updated 3 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆162Updated last month
• mandiant / ccmpwn
  ☆203Updated last year
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆200Updated 7 months ago
• cybersectroll / TrollAMSI
  ☆176Updated last week
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆223Updated last month
• arth0sz / Practice-AD-CS-Domain-Escalation
  Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…
  ☆129Updated last year
• garrettfoster13 / aced
  ☆159Updated 6 months ago