Alternatives and similar repositories for SpicyAD

Users that are interested in SpicyAD are comparing it to the libraries listed below

• truerustyy / wcreddump
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆79Updated last year
• LuemmelSec / AD-Ghost
  ☆55Updated 2 months ago
• nullenc0de / Internal_Pentest
  Scripts that automate portions of pentests.
  ☆57Updated last week
• aleemladha / SANS-Workshop-Lab
  SANS Workshop: Active Directory Privilege Escalation with Empire!
  ☆35Updated 2 months ago
• sensepost / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆86Updated 11 months ago
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆92Updated 2 months ago
• VirtualSamuraii / flyphish
  Deploy a phishing infrastructure on the fly.
  ☆78Updated last year
• Semperis / GoldenDMSA
  This tool exploits Golden DMSA attack against delegated Managed Service Accounts.
  ☆89Updated 6 months ago
• secorizon / MSFinger
  Microsoft Network Service Fingerprinting Tool
  ☆67Updated last month
• d-sec-net / VPK
  Vast.ai Password Kracking
  ☆92Updated 3 months ago
• TheManticoreProject / LDAPWordlistHarvester
  A tool that allows you to extract a client-specific wordlist from the LDAP of an Active Directory.
  ☆57Updated 7 months ago
• OffsecDeer / TargetedTimeroast
  Tamper Active Directory user attributes to collect their hashes with MS-SNTP
  ☆61Updated last year
• CorvraLabs / EvilNeko
  ☆71Updated last month
• ShutdownRepo / dcshadow
  Python alternative to Mimikatz lsadump::dcshadow
  ☆157Updated 7 months ago
• wcrooker / PhishHook
  A modern GoPhish fork with improved tracking accuracy and smarter detection.
  ☆69Updated this week
• Im10n / CVE-2024-3183-POC
  POC for CVE-2024-3183 (FreeIPA Rosting)
  ☆27Updated last year
• dmcxblue / Red-Team-Guide
  A small red team course
  ☆40Updated 2 years ago
• eversinc33 / CredGuess
  Generate password spraying lists based on the pwdLastSet-attribute of users.
  ☆55Updated 2 years ago
• TheSleekBoyCompany / AnsibleHound
  Go collector for adding Ansible WorX and Ansible Tower attack paths to BloodHound with OpenGraph
  ☆68Updated this week
• uziii2208 / CVE-2025-33073
  Universal exploitation tool for CVE-2025-33073 targeting Windows Domain Controllers with DNSAdmins privileges and WinRM enabled.
  ☆64Updated 2 months ago
• Lucreza / WinDefExclusionFinder
  Small Script that permits to enumerate folders in Windows Defender Exclusion List with no Administrative privileges
  ☆27Updated last year
• Logisek / AZexec
  The Azure Execution Tool
  ☆37Updated last week
• m1ddl3w4r3 / WSL_Payload_Builder
  A powerful shell script for creating custom WSL (Windows Subsystem for Linux) distributions with embedded payloads.
  ☆71Updated 2 months ago
• Maldev-Academy / GitHubDeviceCodePhishing
  A tool to easily perform GitHub Device Code Phishing on red team engagements
  ☆79Updated 2 months ago
• The-Viper-One / Invoke-PowerChrome
  Decrypt Chromium based browser passwords with PowerShell.
  ☆134Updated 2 months ago
• ASP4RUX / bypassEDR-AV
  ☆59Updated last year
• LuemmelSec / Moodle-Scanner
  A Moodle Scanner
  ☆43Updated last year
• epotseluevskaya / impacket_mssqlrelay
  Impacket with added MSSQL Relay server
  ☆49Updated last month
• synacktiv / kcmdump
  Dump Kerberos tickets from the KCM database of SSSD
  ☆55Updated last month
• Leo4j / PowerDACL
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆61Updated 6 months ago