Alternatives and similar repositories for PowerShellMisc

Users that are interested in PowerShellMisc are comparing it to the libraries listed below

• jonny-jhnson / LDAPMon
  ☆45Updated last year
• T3KX / Crackmapexec-LAPS
  LAPS module for CrackMapExec
  ☆29Updated 3 years ago
• ConstantinT / Lantern
  ☆23Updated 3 years ago
• Hypnoze57 / RDPChecker
  RDP Checker
  ☆63Updated last year
• morRubin / AzureADJoinedMachinePTC
  Tool to perform lateral movement between AAD joined devices
  ☆64Updated 3 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 3 years ago
• improsec / CaddyStager
  ☆38Updated 3 years ago
• netwrix / server-untrust-account
  A technique for Active Directory domain persistence
  ☆39Updated 2 years ago
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆36Updated last year
• HackmichNet / AzTokenFinder
  ☆107Updated 2 years ago
• deepinstinct / AMSI-Unchained
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆91Updated 2 years ago
• bugch3ck / SharpLdapWhoami
  WhoAmI by asking the LDAP service on a domain controller.
  ☆63Updated 3 years ago
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated 2 years ago
• EspressoCake / Firewall_Walker_BOF
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆107Updated 3 years ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆92Updated 2 years ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 3 years ago
• idnahacks / NetCeasePlusPlus
  Takes the original idea of NetCease and adds functionality
  ☆24Updated 3 years ago
• 0xe7 / WonkaVision
  ☆84Updated 2 years ago
• ps1337 / Lastenzug
  Socks4a proxy leveraging PIC, Websockets and static obfuscation on assembly level
  ☆26Updated 3 years ago
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆19Updated 3 years ago
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆128Updated 2 years ago
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 3 years ago
• skelsec / winacl
  Platform independent library for interfacing windows security descriptors
  ☆19Updated 7 months ago
• Flangvik / collector
  Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.
  ☆19Updated 3 years ago
• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆54Updated 5 years ago
• RemiEscourrou / Invoke-Leghorn
  Leghorn code for PKI abuse
  ☆32Updated 4 years ago
• PwnDefend / Active_Directory_ADSI_Audit_Powershell
  blame Huy
  ☆42Updated 4 years ago
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆124Updated 3 years ago
• pracsec / AmsiScanner
  A tool for interacting with the Anti-Malware Scan Interface API for pen testing purposes.
  ☆65Updated last year