Alternatives and similar repositories for AWSDoor

Users that are interested in AWSDoor are comparing it to the libraries listed below

• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆42Updated 2 years ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆42Updated 4 months ago
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆54Updated 2 months ago
• HulkOperator / AuthStager
  ☆59Updated last year
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆41Updated 2 years ago
• JCSteiner / SGCC---public
  Command and Control Framework using powershell implants
  ☆35Updated 7 months ago
• 0xbad53c / OffSecOps-Arsenal
  Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
  ☆45Updated last year
• Offensive-Panda / .NET_PROFILER_DLL_LOADING
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆46Updated last year
• grayhatkiller / wambam-bof
  ☆47Updated 2 months ago
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆38Updated 2 months ago
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated last year
• zimnyaa / smbsocks
  A simple rpc2socks alternative in pure Go.
  ☆31Updated last year
• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆45Updated 10 months ago
• strozfriedberg / DUALITY
  ☆18Updated last year
• Leo4j / KeyCredentialLink
  Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute
  ☆25Updated last year
• Patrick0x41 / BOF_All_Things
  Beacon Object Files (BOF) for Cobalt Strike.
  ☆32Updated last year
• nullenc0de / trust-validator
  Validates priv escalation of AD trusts
  ☆48Updated 10 months ago
• nyxgeek / autodiscover_enum
  time-based user enum via Basic Auth in Azure against Autodiscover
  ☆33Updated last year
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated 2 years ago
• Faran-17 / EarlyBird-APC-Injection
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆35Updated 2 years ago
• mdsecactivebreach / PleasantTools
  Tools for Attacking Pleasant Password Server
  ☆22Updated 2 years ago
• OOAFA / squeegee
  A collection of tools using OCR to extract potential usernames from RDP screenshots.
  ☆30Updated last year
• decoder-it / Troopers24
  ☆43Updated last year
• decoder-it / NewMachineAccount
  ☆38Updated 11 months ago
• redskal / malrdp-deploy
  Automated (kinda) deployment of MalRDP infrastructure with Terraform & Ansible
  ☆12Updated 2 years ago
• crisprss / magicNetdefs
  Similar to Petitpotam, the netdfs service is enabled in Windows Server and AD environments, and the abused RPC method allows privileged p…
  ☆49Updated 3 years ago
• felmoltor / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆32Updated 11 months ago
• 123ojp / GREtunnel-scanner
  This is a GRE PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion
  ☆94Updated 5 months ago
• EricEsquivel / OpsLoader
  A Cobalt Strike payload generator and lateral movement aggressor script which places Beacon shellcode into a custom shellcode loader
  ☆45Updated last year
• OffenseTeacher / Steganim
  ☆47Updated 2 years ago