RedTeamPentesting/keycred

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/RedTeamPentesting/keycred)

RedTeamPentesting / keycred

Generate and Manage KeyCredentialLinks

☆246

Alternatives and similar repositories for keycred

Users that are interested in keycred are comparing it to the libraries listed below

Sorting:

SpecterOps / cred1py
View on GitHub
A Python POC for CRED1 over SOCKS5
☆164Oct 5, 2024Updated last year
decoder-it / KrbRelayEx-RPC
View on GitHub
☆198Mar 28, 2025Updated 11 months ago
decoder-it / ChgPass
View on GitHub
☆137Feb 11, 2025Updated last year
CCob / DRSAT
View on GitHub
Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
☆275Dec 27, 2024Updated last year
RedTeamPentesting / adauth
View on GitHub
Active Directory Authentication Library
☆90Nov 7, 2025Updated 3 months ago
CrowdStrike / sccmhound
View on GitHub
A BloodHound collector for Microsoft Configuration Manager
☆391Jul 7, 2025Updated 7 months ago
logangoins / Stifle
View on GitHub
.NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
☆150Feb 10, 2025Updated last year
logangoins / Cable
View on GitHub
.NET post-exploitation toolkit for Active Directory reconnaissance and exploitation
☆400Jul 23, 2025Updated 7 months ago
rtecCyberSec / RAITrigger
View on GitHub
Local SYSTEM auth trigger for relaying
☆168Jul 22, 2025Updated 7 months ago
decoder-it / KrbRelayEx
View on GitHub
☆379Oct 17, 2025Updated 4 months ago
xforcered / SoaPy
View on GitHub
SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
☆261Feb 21, 2025Updated last year
dadevel / impacket-shell-integration
View on GitHub
Bash and ZSH integration for Impacket
☆73Nov 6, 2025Updated 3 months ago
trustedsec / DitExplorer
View on GitHub
Tool for viewing NTDS.dit
☆192Mar 14, 2025Updated 11 months ago
synacktiv / SCCMSecrets
View on GitHub
SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
☆261Nov 22, 2025Updated 3 months ago
xforcered / RemoteMonologue
View on GitHub
Weaponizing DCOM for NTLM Authentication Coercions
☆275Jul 1, 2025Updated 7 months ago
decoder-it / KrbRelay-SMBServer
View on GitHub
☆235Oct 8, 2024Updated last year
Thunter-HackTeam / EvilentCoerce
View on GitHub
☆159May 5, 2025Updated 9 months ago
ricardojoserf / NativeBypassCredGuard
View on GitHub
Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
☆266Apr 8, 2025Updated 10 months ago
synacktiv / captaincredz
View on GitHub
CaptainCredz is a modular and discreet password-spraying tool.
☆133Jul 22, 2025Updated 7 months ago
garrettfoster13 / sccmhunter
View on GitHub
SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…
☆892Feb 18, 2026Updated last week
deepinstinct / DCOMUploadExec
View on GitHub
DCOM Lateral movement POC abusing the IMsiServer interface - uploads and executes a payload remotely
☆381Dec 13, 2024Updated last year
RedTeamPentesting / pretender
View on GitHub
Your MitM sidekick for relaying attacks featuring DHCPv6 DNS takeover as well as mDNS, LLMNR and NetBIOS-NS spoofing.
☆1,259Dec 9, 2025Updated 2 months ago
synacktiv / CVE-2024-43468
View on GitHub
☆95Jan 16, 2025Updated last year
Mayyhem / Maestro
View on GitHub
Abusing Azure services over C2
☆368Jan 20, 2026Updated last month
zyn3rgy / smbtakeover
View on GitHub
BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
☆346Nov 19, 2024Updated last year
mlcsec / EDRenum-BOF
View on GitHub
Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
☆128Oct 4, 2024Updated last year
jsecu / ModTask
View on GitHub
☆53Sep 23, 2025Updated 5 months ago
safedv / RustSoliloquy
View on GitHub
A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
☆191Apr 26, 2025Updated 10 months ago
EspressoCake / ADIDNS_Parser
View on GitHub
Parser and reconciliation tooling for large Active Directory environments.
☆33Feb 18, 2025Updated last year
sensepost / susinternals
View on GitHub
psexecsvc - a python implementation of PSExec's native service implementation
☆237Feb 11, 2025Updated last year
LuemmelSec / APEX
View on GitHub
Azure Post Exploitation Framework
☆244Oct 27, 2025Updated 4 months ago
subat0mik / Misconfiguration-Manager
View on GitHub
Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive an…
☆1,096Feb 20, 2026Updated last week
zimedev / certipy-merged
View on GitHub
Tool for Active Directory Certificate Services enumeration and abuse
☆164Apr 17, 2025Updated 10 months ago
PShlyundin / GPOHunter
View on GitHub
A security assessment tool for analyzing Active Directory Group Policy Objects (GPOs) to identify misconfigurations and vulnerabilities
☆319Mar 27, 2025Updated 11 months ago
ricardojoserf / TrickDump
View on GitHub
Dump lsass using only NTAPI functions creating 3 JSON and 1 ZIP file... and generate the MiniDump file later!
☆537May 9, 2025Updated 9 months ago
cogiceo / GPOHound
View on GitHub
Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data
☆357Jan 8, 2026Updated last month
xforcered / ForsHops
View on GitHub
ForsHops
☆152Mar 25, 2025Updated 11 months ago
g0h4n / RustHound-CE
View on GitHub
Active Directory data ingestor for BloodHound Community Edition written in Rust. 🦀
☆456Jan 15, 2026Updated last month
synacktiv / Invoke-RunAsWithCert
View on GitHub
A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
☆172May 13, 2024Updated last year