Alternatives and similar repositories for BloodHoundOperator

Users that are interested in BloodHoundOperator are comparing it to the libraries listed below

• CCob / Shwmae
  ☆161Updated 11 months ago
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆92Updated last month
• logangoins / SOAPy
  SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆154Updated this week
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆144Updated last year
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆101Updated 8 months ago
• SpecterOps / cred1py
  A Python POC for CRED1 over SOCKS5
  ☆162Updated last year
• t3hbb / PanGP_Extractor
  Tool to extract username and password of current user from PanGPA in plaintext
  ☆88Updated last year
• LaresLLC / SlinkyCat
  Slinky Cat attempts to give users an easy-to-navigate menu offering predefined Active Directory Service Interfaces (ADSI) and .NET querie…
  ☆80Updated 2 years ago
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆74Updated 10 months ago
• mlcsec / SharpGraphView
  Microsoft Graph API post-exploitation toolkit
  ☆95Updated last year
• powerseb / PowerExtract
  ☆120Updated 9 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181Updated 7 months ago
• temp43487580 / EntraPassTheCert
  tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it
  ☆130Updated 4 months ago
• andrecrafts / Bloodhound-query-legacy2ce
  A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …
  ☆34Updated 3 months ago
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆82Updated last year
• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆104Updated 7 months ago
• Krypteria / Neo4LDAP
  Neo4LDAP is a query and visualization tool focused on Active Directory environments. It combines LDAP syntax with graph-based data analys…
  ☆93Updated 2 months ago
• emiliensocchi / azurehound-queries
  🌩️ Collection of BloodHound queries for Azure
  ☆82Updated last year
• S3cur3Th1sSh1t / SharpVeeamDecryptor
  Decrypt Veeam database passwords
  ☆218Updated last month
• synacktiv / Invoke-RunAsWithCert
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆164Updated last year
• BC-SECURITY / ScriptBlock-Smuggling
  Example code samples from our ScriptBlock Smuggling Blog post
  ☆94Updated last year
• decoder-it / printerbugnew
  The DCERPC only printerbug.py version
  ☆186Updated 2 months ago
• mertdas / SharpLateral
  Lateral Movement
  ☆126Updated 2 years ago
• kiwids0220 / deviceCode2WinHello
  A small script that automates Entra ID persistence with Windows Hello For Business key
  ☆65Updated 10 months ago
• rotarydrone / GlobalUnProtect
  Decrypt GlobalProtect configuration and cookie files.
  ☆159Updated last year
• 7hePr0fess0r / ADCSDevilCOM
  A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …
  ☆162Updated 2 months ago
• badsectorlabs / sccm-http-looter
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆206Updated last year
• skelsec / pysnaffler
  pysnaffler
  ☆109Updated last week
• nromsdahl / squarephish2
  OAuth Device Code Phishing Toolkit
  ☆105Updated 4 months ago
• t94j0 / adexplorersnapshot-rs
  ☆94Updated last month