Alternatives and similar repositories for BloodHoundOperator

Users that are interested in BloodHoundOperator are comparing it to the libraries listed below

• CCob / Shwmae
  ☆160Updated last year
• t3hbb / PanGP_Extractor
  Tool to extract username and password of current user from PanGPA in plaintext
  ☆89Updated last year
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆92Updated 2 months ago
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆82Updated last year
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆164Updated last year
• logangoins / SOAPy
  SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆158Updated 2 weeks ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆102Updated 9 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆144Updated last year
• andrecrafts / Bloodhound-query-legacy2ce
  A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …
  ☆34Updated 4 months ago
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆74Updated 11 months ago
• temp43487580 / EntraPassTheCert
  tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it
  ☆131Updated 5 months ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆82Updated last year
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181Updated 8 months ago
• badsectorlabs / sccm-http-looter
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆206Updated last year
• powerseb / PowerExtract
  ☆120Updated 10 months ago
• Hagrid29 / AbuseAzureAPIPermissions
  Abuse Azure API permissions for red teaming
  ☆71Updated 3 years ago
• Thunter-HackTeam / EvilentCoerce
  ☆159Updated 9 months ago
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆95Updated last year
• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆106Updated 8 months ago
• daddycocoaman / azbelt
  AAD related enumeration in Nim
  ☆132Updated 2 years ago
• skelsec / pysnaffler
  pysnaffler
  ☆110Updated last month
• LaresLLC / SlinkyCat
  Slinky Cat attempts to give users an easy-to-navigate menu offering predefined Active Directory Service Interfaces (ADSI) and .NET querie…
  ☆80Updated 2 years ago
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆169Updated last year
• rotarydrone / GlobalUnProtect
  Decrypt GlobalProtect configuration and cookie files.
  ☆158Updated last year
• BC-SECURITY / IronSharpPack
  IronSharpPack is a repo of popular C# projects that have been embedded into IronPython scripts that execute an AMSI bypass and then refle…
  ☆118Updated last year
• kiwids0220 / deviceCode2WinHello
  A small script that automates Entra ID persistence with Windows Hello For Business key
  ☆65Updated 11 months ago
• Shac0x / Wonka
  Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…
  ☆162Updated 3 months ago
• t94j0 / adexplorersnapshot-rs
  ☆94Updated last month
• S3cur3Th1sSh1t / SharpVeeamDecryptor
  Decrypt Veeam database passwords
  ☆221Updated last month
• absolomb / FindMeAccess
  ☆188Updated last month