Alternatives and similar repositories for PowerShellMisc

Users that are interested in PowerShellMisc are comparing it to the libraries listed below

• jonny-jhnson / LDAPMon
  ☆45Updated last year
• ConstantinT / Lantern
  ☆23Updated 3 years ago
• T3KX / Crackmapexec-LAPS
  LAPS module for CrackMapExec
  ☆29Updated 3 years ago
• Hypnoze57 / RDPChecker
  RDP Checker
  ☆63Updated last year
• netwrix / server-untrust-account
  A technique for Active Directory domain persistence
  ☆39Updated 2 years ago
• morRubin / AzureADJoinedMachinePTC
  Tool to perform lateral movement between AAD joined devices
  ☆64Updated 3 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆31Updated 3 years ago
• improsec / CaddyStager
  ☆39Updated 3 years ago
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• deepinstinct / AMSI-Unchained
  Unchain AMSI by patching the provider’s unmonitored memory space
  ☆91Updated 2 years ago
• eladshamir / BadWindowsService
  An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities
  ☆62Updated 3 years ago
• bugch3ck / SharpLdapWhoami
  WhoAmI by asking the LDAP service on a domain controller.
  ☆63Updated 3 years ago
• PwnDefend / Active_Directory_ADSI_Audit_Powershell
  blame Huy
  ☆42Updated 4 years ago
• xpn / WAMBam
  Tooling related to the WAM Bam - Recovering Web Tokens From Office blog post
  ☆128Updated 2 years ago
• HackmichNet / AzTokenFinder
  ☆107Updated 2 years ago
• thalpius / Microsoft-Defender-for-Identity-Encrypted-Password
  ☆36Updated last year
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated 2 years ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 3 years ago
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 3 years ago
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆19Updated 3 years ago
• 0xe7 / EventSniper
  ☆21Updated last year
• HackmichNet / SharpAzToken
  ☆63Updated last year
• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆54Updated 5 years ago
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆92Updated 2 years ago
• GhostManager / cobalt_sync
  Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+
  ☆31Updated last year
• nullenc0de / trust-validator
  Validates priv escalation of AD trusts
  ☆47Updated 5 months ago
• Octoberfest7 / Proxy_Egress_Persistence
  A post-exploitation strategy for persistence and egress from networks utilizing authenticated web proxies
  ☆33Updated 2 years ago
• EspressoCake / Firewall_Walker_BOF
  A BOF to interact with COM objects associated with the Windows software firewall.
  ☆107Updated 3 years ago
• roobixx / EventLogForRedTeams
  Simple PoC from Malicious Payload Injection from Windows Event Log Entry
  ☆28Updated 3 years ago
• t94j0 / sddl_py
  Parse SDDL strings
  ☆36Updated last year