Alternatives and similar repositories for PowerShellMisc:

Users that are interested in PowerShellMisc are comparing it to the libraries listed below

• jsecurity101 / LDAPMon
  ☆45Updated last year
• T3KX / Crackmapexec-LAPS
  LAPS module for CrackMapExec
  ☆29Updated 3 years ago
• 4ndr3w6 / Presentations
  ☆13Updated last year
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated last year
• ConstantinT / Lantern
  ☆20Updated 3 years ago
• RomaissaAdjailia / Get-AppLockerEventlog
  This is a repo for fetching Applocker event log by parsing the win-event log
  ☆30Updated 2 years ago
• idnahacks / NetCeasePlusPlus
  Takes the original idea of NetCease and adds functionality
  ☆24Updated 3 years ago
• commial / LiveDiffAD
  AD Live changes viewer
  ☆35Updated 2 years ago
• techBrandon / CAPs
  Scripts to enumerate and report on Entra Conditional Access
  ☆27Updated 6 months ago
• morRubin / AzureADJoinedMachinePTC
  Tool to perform lateral movement between AAD joined devices
  ☆56Updated 2 years ago
• jakehildreth / adcs-snippets
  Just a bunch of code snippets to identify and remediate common Active Directory Certificate Services issues.
  ☆32Updated last year
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• PwnDefend / Active_Directory_ADSI_Audit_Powershell
  blame Huy
  ☆42Updated 4 years ago
• bagelByt3s / ludus_adfs
  An Ansible collection that installs an ADFS deployment with optional configurations.
  ☆27Updated 3 months ago
• netwrix / server-untrust-account
  A technique for Active Directory domain persistence
  ☆39Updated last year
• improsec / CaddyStager
  ☆36Updated 2 years ago
• HackmichNet / SharpAzToken
  ☆42Updated last year
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆121Updated 3 years ago
• nicolonsky / AzureAiTMFunction
  Azure AiTM Function PoC to phish Entra ID Credentials
  ☆22Updated 5 months ago
• techspence / BadShares
  A tool to create randomly insecure file shares that also contain unsecured credential files
  ☆36Updated 10 months ago
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆26Updated last year
• netbiosX / GhostLoader
  GhostLoader - AppDomainManager - Injection - 攻壳机动队
  ☆52Updated 4 years ago
• JonasBK / Powershell
  ☆34Updated last month
• C0axx / Modified-Thycotic-Secret-Stealer
  Modified-Thycotic-Secret-Stealer for use with DPAPI and offline Decryption
  ☆19Updated 2 years ago
• roobixx / EventLogForRedTeams
  Simple PoC from Malicious Payload Injection from Windows Event Log Entry
  ☆27Updated 2 years ago
• Gerenios / public
  Public scripts etc.
  ☆19Updated last year
• mvelazc0 / SharpShareFinder
  SharpShareFinder is a minimalistic network share discovery POC designed to enumerate shares in Windows Active Directory networks leveragi…
  ☆27Updated 8 months ago
• p0dalirius / winacl
  winacl, a cross platforms Go library to work with ntSecurityDescriptor.
  ☆29Updated last month