Alternatives and similar repositories for goattck

Users that are interested in goattck are comparing it to the libraries listed below

• jsecurity101 / LDAPMon
  ☆45Updated last year
• RedTeamOperations / Detecting-Adversarial-Tradecrafts-Tools-by-leveraging-ETW
  CyberWarFare Labs hands-on workshop on the topic "Detecting Adversarial Tradecrafts/Tools by leveraging ETW"
  ☆49Updated 3 years ago
• brokensound77 / LoFP
  Living off the False Positive!
  ☆37Updated 4 months ago
• SevenStones / auditpolCIS
  CIS Benchmark testing of Windows SIEM configuration
  ☆44Updated 2 years ago
• EspressoCake / MITRE_ATTACK_CLI
  CLI Search for Security Operators of MITRE ATT&CK URLs
  ☆16Updated 2 years ago
• decoder-it / Troopers24
  ☆41Updated 10 months ago
• mvelazc0 / SharpShareFinder
  SharpShareFinder is a minimalistic network share discovery POC designed to enumerate shares in Windows Active Directory networks leveragi…
  ☆28Updated 10 months ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 2 years ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆48Updated 5 months ago
• ACE-Responder / rpcfirewall-extended-telemetry
  ☆14Updated last year
• BreakingMhet / honeyzure
  HoneyZure is a honeypot tool specifically designed for Azure environments, fully provisioned through Terraform. It leverages a Log Analyt…
  ☆16Updated 11 months ago
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆27Updated last year
• chipmanfu / Cyber-Range
  create a "simulated internet" cyber range environment
  ☆16Updated last week
• MythicAgents / bloodhound
  Bloodhound agent for Mythic
  ☆19Updated last month
• synacktiv / EIPP
  Entra ID Password Protection Banned Password Lists
  ☆16Updated last year
• cybergoatpsyops / detections
  Placeholder for my detection repo and misc detection engineering content
  ☆43Updated last year
• Retrospected / PurpleKeep
  Providing Azure pipelines to create an infrastructure and run Atomic tests.
  ☆52Updated last year
• DISREL / Conti-Leaked-Playbook-TTPs
  MITRE TTPs derived from Conti's leaked playbooks from XSS.IS
  ☆38Updated 3 years ago
• Hexastrike / LockBit-Database-Leak-2025
  Structured CSVs and table schemas extracted from the 29-April-2025 LockBit affiliate-panel database leak.
  ☆23Updated 3 weeks ago
• xalicex / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆14Updated 2 years ago
• Retrospected / kerbmon
  Continuous kerberoast monitor
  ☆45Updated last year
• felmoltor / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆30Updated 2 months ago
• LOFL-Project / LOFLCAB
  ☆54Updated 5 months ago
• advanced-threat-research / NetLlix
  A project created with an aim to emulate and test exfiltration of data over different network protocols.
  ☆31Updated 2 years ago
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆19Updated 2 years ago
• 8com / bloodhound-adAnalysis
  Automation of Active Directory penetration testing tasks on top of BloodHound CE
  ☆34Updated last year
• RedTeamPentesting / kbtls
  Establishes mutually trusted TLS connections based on a pre-shared connection key.
  ☆48Updated last year
• morRubin / AzureADJoinedMachinePTC
  Tool to perform lateral movement between AAD joined devices
  ☆61Updated 2 years ago
• I3IT / Detect.Remote.ShadowSnapshot.Dump
  Detect Remote Local Credentials Dumping using a Shadow Snapshot
  ☆22Updated 4 months ago