PShlyundin / GPOHunterView external linksLinks
A security assessment tool for analyzing Active Directory Group Policy Objects (GPOs) to identify misconfigurations and vulnerabilities
☆318Mar 27, 2025Updated 10 months ago
Alternatives and similar repositories for GPOHunter
Users that are interested in GPOHunter are comparing it to the libraries listed below
Sorting:
- Generate and Manage KeyCredentialLinks☆245Jan 30, 2026Updated 2 weeks ago
- ☆378Oct 17, 2025Updated 3 months ago
- Exploit AD CS misconfiguration allowing privilege escalation and persistence from any child domain to full forest compromise☆126Dec 2, 2023Updated 2 years ago
- Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data☆354Jan 8, 2026Updated last month
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆400Jul 23, 2025Updated 6 months ago
- ☆198Mar 28, 2025Updated 10 months ago
- SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.☆260Nov 22, 2025Updated 2 months ago
- SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.☆260Feb 21, 2025Updated 11 months ago
- Assess the security of your Active Directory with few or all privileges.☆341Jan 31, 2026Updated 2 weeks ago
- Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…☆273Dec 27, 2024Updated last year
- Tool for viewing NTDS.dit☆191Mar 14, 2025Updated 11 months ago
- A BloodHound collector for Microsoft Configuration Manager☆364Jul 7, 2025Updated 7 months ago
- A small tool built to find and fix common misconfigurations in Active Directory Certificate Services.☆1,431Jan 5, 2026Updated last month
- AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover se…☆1,471Jan 23, 2026Updated 3 weeks ago
- A Python POC for CRED1 over SOCKS5☆164Oct 5, 2024Updated last year
- SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…☆886Updated this week
- A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)☆61Feb 4, 2026Updated last week
- ☆159May 5, 2025Updated 9 months ago
- Local SYSTEM auth trigger for relaying☆168Jul 22, 2025Updated 6 months ago
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆150Feb 10, 2025Updated last year
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆358Dec 13, 2025Updated 2 months ago
- gpoParser is a tool designed to extract and analyze configurations applied through Group Policy Objects (GPOs) in an Active Directory env…☆329Jan 14, 2026Updated last month
- Azure Post Exploitation Framework☆244Oct 27, 2025Updated 3 months ago
- This repo is about Active Directory Advanced Threat Hunting☆649Feb 17, 2025Updated last year
- Tool to obtain hash using MS-SNTP for user accounts☆28Jan 22, 2025Updated last year
- Active Directory delegation management tool☆438Oct 25, 2025Updated 3 months ago
- ☆761May 7, 2025Updated 9 months ago
- An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…☆166Oct 9, 2024Updated last year
- PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirector…☆398Jan 14, 2026Updated last month
- Python implementation of GhostPack's Seatbelt situational awareness tool☆270Nov 12, 2024Updated last year
- Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement☆181May 19, 2025Updated 8 months ago
- DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely☆381Dec 13, 2024Updated last year
- A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts☆167Jun 29, 2025Updated 7 months ago
- A companion tool that uses ADeleg to find insecure trustee and resource delegations in Active Directory☆310Oct 23, 2025Updated 3 months ago
- Shellcode encryptor using a substitution cipher with a randomly generated key.☆141Jan 18, 2025Updated last year
- Red teaming tool to dump LSASS memory, bypassing basic countermeasures.☆245Nov 2, 2025Updated 3 months ago
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆418Sep 29, 2025Updated 4 months ago
- Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive an…☆1,089Feb 4, 2026Updated last week
- Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework☆635May 8, 2025Updated 9 months ago