Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.
☆529Jul 31, 2024Updated last year
Alternatives and similar repositories for HEKATOMB
Users that are interested in HEKATOMB are comparing it to the libraries listed below
Sorting:
- Dumping DPAPI credz remotely☆1,329Mar 24, 2025Updated 11 months ago
- In-depth ldap enumeration utility☆562Feb 19, 2026Updated last week
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆361Dec 13, 2025Updated 2 months ago
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆398Aug 15, 2025Updated 6 months ago
- Dump NTDS with golden certificates and UnPAC the hash☆647Mar 20, 2024Updated last year
- PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains…☆983Oct 15, 2025Updated 4 months ago
- DPAPI looting remotely and locally in Python☆542Oct 7, 2025Updated 4 months ago
- A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.☆2,188Jan 5, 2026Updated last month
- Check for LDAP protections regarding the relay of NTLM authentication☆530Nov 19, 2024Updated last year
- Active Directory data ingestor for BloodHound Legacy written in Rust. 🦀☆1,128Oct 21, 2024Updated last year
- Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!☆1,303Updated this week
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆568Jun 5, 2023Updated 2 years ago
- Fully featured and community-driven hacking environment☆2,931Jan 14, 2026Updated last month
- A python tool to automate KeePass discovery and secret extraction.☆516Dec 12, 2024Updated last year
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆372Sep 29, 2025Updated 5 months ago
- AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover se…☆1,475Jan 23, 2026Updated last month
- SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…☆892Feb 18, 2026Updated last week
- Partial python implementation of SharpGPOAbuse☆525Nov 9, 2025Updated 3 months ago
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆672Oct 23, 2025Updated 4 months ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆412Mar 21, 2025Updated 11 months ago
- Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling☆1,263Mar 19, 2025Updated 11 months ago
- FindUncommonShares is a Python script allowing to quickly find uncommon shares in vast Windows Domains, and filter by READ or WRITE acces…☆427Nov 12, 2025Updated 3 months ago
- Quietly enumerate an Active Directory Domain via LDAP parsing users, admins, groups, etc.☆500Jan 23, 2023Updated 3 years ago
- pysnaffler☆110Jan 6, 2026Updated last month
- Find vulnerabilities in AD Group Policy, but do it better than Grouper2 did.☆883Apr 8, 2025Updated 10 months ago
- a tool to help operate in EDRs' blind spots☆767Dec 2, 2024Updated last year
- a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )☆2,745Updated this week
- A windows token impersonation tool☆319Apr 19, 2023Updated 2 years ago
- Extract credentials from lsass remotely☆2,180Dec 24, 2025Updated 2 months ago
- Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.☆1,263Dec 9, 2025Updated 2 months ago
- BloodyAD is an Active Directory Privilege Escalation Framework☆2,098Updated this week
- Dominate Active Directory with PowerShell.☆1,164Nov 28, 2025Updated 3 months ago
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆2,156Updated this week
- Recovering NTLM hashes from Credential Guard☆377Dec 26, 2022Updated 3 years ago
- Arsenal is just a quick inventory and launcher for hacking programs☆3,690Nov 29, 2024Updated last year
- ☆199Aug 28, 2025Updated 6 months ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆862Feb 3, 2024Updated 2 years ago
- Some usefull Scripts and Executables for Pentest & Forensics☆1,151Dec 11, 2025Updated 2 months ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆839Dec 2, 2023Updated 2 years ago