Leo4j/PowerDACL

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Leo4j/PowerDACL)

Leo4j / PowerDACL

A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)

☆62

Alternatives and similar repositories for PowerDACL

Users that are interested in PowerDACL are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

jsecu / ModTask
View on GitHub
☆52Mar 30, 2026Updated last month
jfjallid / go-lsass
View on GitHub
Tool to aid in dumping LSASS process remotely
☆42Sep 23, 2025Updated 7 months ago
OtterHacker / AWSRedirector
View on GitHub
☆57Feb 16, 2025Updated last year
decoder-it / KrbRelay-SMBServer
View on GitHub
☆235Oct 8, 2024Updated last year
winsecurity / AMSI-Bypass-HWBP
View on GitHub
☆26Aug 11, 2025Updated 8 months ago
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
decoder-it / ChgPass
View on GitHub
☆136Feb 11, 2025Updated last year
JonasBK / Powershell
View on GitHub
☆46Feb 6, 2025Updated last year
logangoins / Cable
View on GitHub
.NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
☆401Jul 23, 2025Updated 9 months ago
logangoins / Stifle
View on GitHub
.NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
☆151Feb 10, 2025Updated last year
MWR-CyberSec / AD-CS-Forest-Exploiter
View on GitHub
Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise
☆130Dec 2, 2023Updated 2 years ago
OtterHacker / AWSRoundRobin
View on GitHub
☆41Feb 20, 2025Updated last year
redr0nin / Serenity
View on GitHub
C# DInvoke Shellcode Runner
☆31Feb 10, 2025Updated last year
decoder-it / KrbRelayEx-RPC
View on GitHub
☆200Mar 28, 2025Updated last year
rasta-mouse / process-inject-kit
View on GitHub
Port of Cobalt Strike's Process Inject Kit
☆193Dec 1, 2024Updated last year
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
fin3ss3g0d / StoneKeeper
View on GitHub
StoneKeeper C2, an experimental EDR evasion framework for research purposes
☆209Dec 25, 2024Updated last year
Fudgedotdotdot / nimpersonate
View on GitHub
Impersonate Windows tokens in Nim
☆23Aug 4, 2025Updated 9 months ago
The-Viper-One / Invoke-PassTheCert
View on GitHub
Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel
☆63Apr 13, 2025Updated last year
CobblePot59 / ADcheck
View on GitHub
Assess the security of your Active Directory with few or all privileges.
☆369Updated this week
nettitude / TokenCert
View on GitHub
TokenCert
☆102Nov 15, 2024Updated last year
VirtualSamuraii / flyphish
View on GitHub
Deploy a phishing infrastructure on the fly.
☆78Dec 21, 2024Updated last year
jborean93 / AmsiProvider
View on GitHub
Test AMSI Provider implementation in C#
☆45Dec 18, 2024Updated last year
pwardle / ReflectiveLoader
View on GitHub
A Reflective Loader for macOS
☆149Jul 20, 2025Updated 9 months ago
Shrfnt77 / SharpCoercer
View on GitHub
SharpCoercer is a .NET 4.8 C# tool that leverages 16 different RPC-based coercion methods to force remote Windows hosts to authenticate t…
☆58Jul 13, 2025Updated 9 months ago
Deploy on Railway without the complexity - Free Credits Offer • Ad
Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
CICADA8-Research / Penetration
View on GitHub
Our Tips&Tricks
☆149Mar 4, 2026Updated 2 months ago
lefayjey / SharpSQLPwn
View on GitHub
C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments
☆116Feb 13, 2022Updated 4 years ago
duhirsch / MoveEdr
View on GitHub
Permanently disable EDRs as local admin
☆129Dec 19, 2025Updated 4 months ago
LuemmelSec / APEX
View on GitHub
Azure Post Exploitation Framework
☆246Oct 27, 2025Updated 6 months ago
jakehildreth / PSCertutil
View on GitHub
A PowerShell wrapper for certutil.exe
☆20Mar 18, 2026Updated last month
xforcered / SoaPy
View on GitHub
SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
☆264Feb 21, 2025Updated last year
logangoins / Krueger
View on GitHub
Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC
☆430Sep 29, 2025Updated 7 months ago
ioncodes / SilentLoad
View on GitHub
"Service-less" driver loading
☆186Nov 28, 2024Updated last year
wh0amitz / S4UTomato
View on GitHub
Escalate Service Account To LocalSystem via Kerberos
☆404Sep 14, 2023Updated 2 years ago
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
0xdea / blindsight
View on GitHub
Red teaming tool to dump LSASS memory, bypassing basic countermeasures.
☆247Mar 9, 2026Updated last month
wh0amitz / SharpADWS
View on GitHub
Active Directory reconnaissance and exploitation for Red Teams via the Active Directory Web Services (ADWS).
☆593Mar 19, 2024Updated 2 years ago
decoder-it / NewMachineAccount
View on GitHub
☆39Feb 26, 2025Updated last year
NtDallas / KrakenMask
View on GitHub
Sleep obfuscation
☆274Dec 13, 2024Updated last year
deepinstinct / DCOMUploadExec
View on GitHub
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
☆384Dec 13, 2024Updated last year
NtDallas / Svartalfheim
View on GitHub
Stage 0
☆169Dec 18, 2024Updated last year
CrowdStrike / sccmhound
View on GitHub
A BloodHound collector for Microsoft Configuration Manager
☆399Jul 7, 2025Updated 9 months ago