RayRRT/Active-Directory-Certificate-Services-abuse external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

RayRRT/Active-Directory-Certificate-Services-abuse

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/RayRRT/Active-Directory-Certificate-Services-abuse)

Close

RayRRT / Active-Directory-Certificate-Services-abuseView on GitHubMore

• External links
• Readme badge

☆56Sep 13, 2022Updated 3 years ago

Alternatives and similar repositories for Active-Directory-Certificate-Services-abuse

Users that are interested in Active-Directory-Certificate-Services-abuse are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Allevon412 / ClassicAPIUnhooking

  View on GitHub
  ☆16Nov 23, 2021Updated 4 years ago
• Coontzy1 / WSUScripts

  View on GitHub
  ☆24Sep 6, 2025Updated 9 months ago
• zyn3rgy / smbtakeover

  View on GitHub
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆359Nov 19, 2024Updated last year
• rootsecdev / Impacket_Reference

  View on GitHub
  ☆47Feb 26, 2026Updated 3 months ago
• deh00ni / NtDumpBOF

  View on GitHub
  ☆100Sep 1, 2024Updated last year
• End-to-end encrypted email - Proton Mail • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
• decoder-it / DFSCoerce-exe-2

  View on GitHub
  DFSCoerce exe revisited version with custom authentication
  ☆43Jan 13, 2024Updated 2 years ago
• MartinoTommasini / offlineSCCMdecrypt

  View on GitHub
  Step-by-step documentation on how to decrypt SCCM database secrets offline
  ☆50Oct 20, 2025Updated 7 months ago
• Crowdfense / CVE-2024-21338

  View on GitHub
  Windows AppLocker Driver (appid.sys) LPE
  ☆78Jul 29, 2024Updated last year
• decoder-it / KrbRelay-SMBServer

  View on GitHub
  ☆237Oct 8, 2024Updated last year
• BambiZombie / bypass_uac_bof

  View on GitHub
  一个普通的BOF用来BypassUAC
  ☆22Apr 6, 2024Updated 2 years ago
• rtecCyberSec / RAITrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying
  ☆172Jul 22, 2025Updated 10 months ago
• Octoberfest7 / CS_Uploads_Tracker

  View on GitHub
  Aggressor script add-in for CobaltStrike to track file uploads
  ☆48Nov 7, 2022Updated 3 years ago
• morph3 / Windows-RPC-Backdoor

  View on GitHub
  Simple windows rpc server for research purposes only
  ☆81May 29, 2022Updated 4 years ago
• kypvas / LDIFToBloodHound

  View on GitHub
  A Windows tool that converts LDIF files to BloodHound CE
  ☆32Dec 20, 2025Updated 5 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• ZeroMemoryEx / CVE-2025-68921

  View on GitHub
  Local Privilege Escalation Affecting Millions of Gaming Laptops
  ☆62Jan 19, 2026Updated 4 months ago
• D4rthMaulCop / DarthNetLoader

  View on GitHub
  ☆15Aug 17, 2023Updated 2 years ago
• cube0x0 / SharpSystemTriggers

  View on GitHub
  Collection of remote authentication triggers in C#
  ☆533May 15, 2024Updated 2 years ago
• nickvourd / random_c2_profile

  View on GitHub
  Cobalt Strike random C2 Profile generator
  ☆18Apr 3, 2026Updated 2 months ago
• pard0p / CallstackSpoofingPOC

  View on GitHub
  C++ self-Injecting dropper based on various EDR evasion techniques.
  ☆436Feb 11, 2024Updated 2 years ago
• MayerDaniel / the-one-wsl-bof

  View on GitHub
  One WSL BOF to rule them all
  ☆177Jan 14, 2026Updated 5 months ago
• MahmoudZohdy / IAT-Obfuscation

  View on GitHub
  IAT-Obfuscation to make static analysis of executable harder.
  ☆44Sep 6, 2021Updated 4 years ago
• janoglezcampos / c_syscalls

  View on GitHub
  Single stub direct and indirect syscalling with runtime SSN resolving for windows.
  ☆141Sep 12, 2022Updated 3 years ago
• antman1p / PrintTCCdb

  View on GitHub
  JXA script for Mythic that prints the TCC.db
  ☆15Apr 18, 2021Updated 5 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• kymb0 / Stealth_shellcode_runners

  View on GitHub
  ☆56Mar 25, 2024Updated 2 years ago
• slemire / WSPCoerce

  View on GitHub
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆305Sep 7, 2023Updated 2 years ago
• shelltrail / cmloot

  View on GitHub
  ☆84Mar 11, 2026Updated 3 months ago
• YOLOP0wn / POSTDump

  View on GitHub
  ☆344Nov 10, 2025Updated 7 months ago
• MythicMeta / Mythic_Scripting

  View on GitHub
  Mythic Scripting PyPi package - mythic
  ☆30Jun 3, 2026Updated 2 weeks ago
• decoder-it / NewMachineAccount

  View on GitHub
  ☆39Feb 26, 2025Updated last year
• passtheticket / Abusing_Laps_Toolkit

  View on GitHub
  abusing misconfiguration for AD with LAPS
  ☆12Jan 25, 2024Updated 2 years ago
• klezVirus / RAIWhateverTrigger

  View on GitHub
  Local SYSTEM auth trigger for relaying - X
  ☆158Jul 23, 2025Updated 10 months ago
• ZephrFish / QoL-BOFs

  View on GitHub
  Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning
  ☆139Dec 7, 2025Updated 6 months ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• jonny-jhnson / ProcCallback

  View on GitHub
  An example of how a driver can register a handle creation callback.
  ☆16Jun 12, 2023Updated 3 years ago
• l0n3m4n / bin2shell

  View on GitHub
  Convert binaries to shellcode (C, C#, CPP, ASM, BOF loader, PS to b64)
  ☆18Jun 6, 2025Updated last year
• mr-r3bot / bof-modules

  View on GitHub
  BOF for C2 framework
  ☆44Nov 9, 2024Updated last year
• logangoins / Stifle

  View on GitHub
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆152Feb 10, 2025Updated last year
• slyd0g / LNKMod

  View on GitHub
  C# project to create or modify existing LNKs
  ☆55Oct 18, 2022Updated 3 years ago
• VoldeSec / PatchlessInlineExecute-Assembly

  View on GitHub
  Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
  ☆292Jun 12, 2026Updated last week
• XiaoliChan / winrm-PTH

  View on GitHub
  Golang implement winrm client with pass the hash
  ☆32Apr 29, 2024Updated 2 years ago