Hekatomb is a python script that connects to LDAP directory to retrieve all computers and users informations. Then it will download all DPAPI blob of all users from all computers and uses Domain backup keys to decrypt them.
☆524Jul 31, 2024Updated last year
Alternatives and similar repositories for HEKATOMB
Users that are interested in HEKATOMB are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Dumping DPAPI credz remotely☆1,389Mar 24, 2025Updated last year
- Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory☆407Aug 15, 2025Updated 10 months ago
- In-depth ldap enumeration utility☆591Jun 24, 2026Updated last week
- The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).☆368Dec 13, 2025Updated 6 months ago
- Dump NTDS with golden certificates and UnPAC the hash☆651Mar 20, 2024Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.☆2,283Apr 24, 2026Updated 2 months ago
- PowerHuntShares is an audit script designed in inventory, analyze, and report excessive privileges configured on Active Directory domains…☆1,029Oct 15, 2025Updated 8 months ago
- Fully featured and community-driven hacking environment☆3,006May 4, 2026Updated 2 months ago
- DPAPI looting remotely and locally in Python☆551Mar 13, 2026Updated 3 months ago
- Active Directory data ingestor for BloodHound Legacy written in Rust. 🦀☆1,164Oct 21, 2024Updated last year
- DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …☆572Jun 5, 2023Updated 3 years ago
- VULNSPY regularly retrieves the latest alerts published by the CERT-FR and the related vulnerabilities with their CVSS score and allows y …☆38Nov 3, 2022Updated 3 years ago
- Check for LDAP protections regarding the relay of NTLM authentication☆532Nov 19, 2024Updated last year
- Spider entire networks for juicy files sitting on SMB shares. Search filenames or file content - regex supported!☆1,371Jun 22, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Arsenal is just a quick inventory and launcher for hacking programs☆3,745Nov 29, 2024Updated last year
- A python tool to automate KeePass discovery and secret extraction.☆524Dec 12, 2024Updated last year
- FindUncommonShares is a Python script allowing to quickly find uncommon shares in vast Windows Domains, and filter by READ or WRITE acces…☆431Nov 12, 2025Updated 7 months ago
- Dominate Active Directory with PowerShell.☆1,190Nov 28, 2025Updated 7 months ago
- Tool to automatically exploit Active Directory privilege escalation paths shown by BloodHound☆702Oct 23, 2025Updated 8 months ago
- AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover se…☆1,539Mar 18, 2026Updated 3 months ago
- pysnaffler☆111Jan 6, 2026Updated 5 months ago
- SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…☆927Jun 25, 2026Updated last week
- A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.☆378Mar 24, 2026Updated 3 months ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Partial python implementation of SharpGPOAbuse☆575Jun 13, 2026Updated 3 weeks ago
- GeoWordlists is a tool to generate wordlists of passwords containing cities at a defined distance around the client city.☆164Feb 11, 2025Updated last year
- Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.☆1,288Apr 23, 2026Updated 2 months ago
- Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types☆421Mar 21, 2025Updated last year
- Python script for extracting and decrypting Group Policy Preferences passwords☆26May 28, 2021Updated 5 years ago
- Amnesiac is a post-exploitation framework entirely written in PowerShell and designed to assist with lateral movement within Active Direc…☆445Oct 1, 2025Updated 9 months ago
- Assess the security of your Active Directory with few or all privileges.☆374Jun 18, 2026Updated 2 weeks ago
- Quietly enumerate an Active Directory Domain via LDAP parsing users, admins, groups, etc.☆504Jan 23, 2023Updated 3 years ago
- Refactored & improved CredKing password spraying tool, uses FireProx APIs to rotate IP addresses, stay anonymous, and beat throttling☆1,282Mar 19, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- smbclient-ng, a fast and user friendly way to interact with SMB shares.☆1,036Jun 11, 2026Updated 3 weeks ago
- linWinPwn is a bash script that streamlines the use of a number of Active Directory tools☆2,184May 18, 2026Updated last month
- a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )☆2,870Feb 27, 2026Updated 4 months ago
- Extract credentials from lsass remotely☆2,203Mar 23, 2026Updated 3 months ago
- ☆1,825Aug 30, 2024Updated last year
- ☆174Nov 3, 2025Updated 8 months ago
- BloodyAD is an Active Directory Privilege Escalation Framework☆2,234May 13, 2026Updated last month