Alternatives and similar repositories for adauth

Users that are interested in adauth are comparing it to the libraries listed below

• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆207Updated 10 months ago
• logangoins / Stifle
  .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS
  ☆149Updated 7 months ago
• blackarrowsec / Handly
  Abuse leaked token handles.
  ☆132Updated last year
• mertdas / SharpLateral
  Lateral Movement
  ☆124Updated last year
• decoder-it / KrbRelayEx-RPC
  ☆192Updated 5 months ago
• SpecterOps / MSSQLHound
  PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
  ☆236Updated last week
• CultCornholio / RedTeamTP
  ☆79Updated 3 months ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆142Updated 5 months ago
• Krypteria / Neo4LDAP
  Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…
  ☆83Updated last week
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆83Updated last year
• ad0nis / ntlm_relay_gat
  ☆161Updated last year
• Aur3ns / LsassStealer
  Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…
  ☆107Updated 2 months ago
• ZephrFish / QoL-BOFs
  Curated list of public Beacon Object Files(BOFs) build in as submodules for easy cloning
  ☆132Updated 4 months ago
• MorDavid / vCenterHound
  Collect infrastructure and permissions data from vCenter and export it as a BloodHound‑compatible graph using Custom Nodes/Edges
  ☆140Updated last month
• CodeXTF2 / WebcamBOF
  Webcam capture capability for Cobalt Strike as a BOF, with in-memory download options
  ☆141Updated 5 months ago
• MazX0p / PhantomInjector
  Advanced In-Memory PowerShell Process Injection Framework
  ☆68Updated last month
• t94j0 / adexplorersnapshot-rs
  ☆83Updated last year
• JPG0mez / ADCSync
  Use ESC1 to perform a makeshift DCSync and dump hashes
  ☆212Updated last year
• Thunter-HackTeam / EvilentCoerce
  ☆146Updated 4 months ago
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆263Updated 4 months ago
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆118Updated last year
• mlcsec / EDRenum-BOF
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆123Updated 11 months ago
• zblurx / acltoolkit
  ACL abuse swiss-knife
  ☆125Updated 2 years ago
• CCob / gssapi-abuse
  A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
  ☆171Updated 3 weeks ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆176Updated 3 months ago
• trustedsec / DitExplorer
  Tool for viewing NTDS.dit
  ☆178Updated 6 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆148Updated last year
• rtecCyberSec / RAITrigger
  Local SYSTEM auth trigger for relaying
  ☆157Updated last month
• decoder-it / ADCSCoercePotato
  ☆230Updated last year
• CompassSecurity / mssqlrelay
  Tool for MSSQL relay audit and abuse
  ☆55Updated 8 months ago