Alternatives and similar repositories for BloodSOCer

Users that are interested in BloodSOCer are comparing it to the libraries listed below

• kypvas / LDIFToBloodHound

  View on GitHub
  A Windows tool that converts LDIF files to BloodHound CE
  ☆25Dec 20, 2025Updated last month
• 0xflux / Scil

  View on GitHub
  System Call Integrity Layer - experimental security research
  ☆25Jan 31, 2026Updated 2 weeks ago
• mandiant / cleanldap

  View on GitHub
  ☆164Oct 21, 2025Updated 3 months ago
• glynx / peas

  View on GitHub
  Modified version of PEAS client for offensive operations
  ☆50Nov 1, 2025Updated 3 months ago
• SpecterOps / ConfigManBearPig

  View on GitHub
  PowerShell collector for adding SCCM attack paths to BloodHound with OpenGraph
  ☆67Jan 30, 2026Updated 2 weeks ago
• Xenov-X / csbot

  View on GitHub
  Golang Automation Framework for Cobalt Strike using the Rest API
  ☆56Dec 4, 2025Updated 2 months ago
• leftp / SharpPXE

  View on GitHub
  A C# tool for extracting information from SCCM PXE boot media.
  ☆45Jan 14, 2026Updated last month
• Maldev-Academy / GitHubDeviceCodePhishing

  View on GitHub
  A tool to easily perform GitHub Device Code Phishing on red team engagements
  ☆82Updated this week
• mdecrevoisier / Windows-auditing-baseline

  View on GitHub
  Provides an advanced baseline to implement a secure Windows auditing strategy on Windows OS.
  ☆60Jun 9, 2025Updated 8 months ago
• VirtualAlllocEx / CS-EDR-Enumeration

  View on GitHub
  Cobalt Strike Aggressor Script for identifying security products on Windows hosts — six enumeration methods rated by noise level, from si…
  ☆30Feb 6, 2026Updated last week
• monsieurPale / BreakFAST

  View on GitHub
  Proof of concept for Kerberos Armoring abuse.
  ☆78Dec 12, 2025Updated 2 months ago
• lsecqt / SessionView

  View on GitHub
  A portable C# utility for enumerating local and remote windows sessions
  ☆55Jan 1, 2026Updated last month
• RayRRT / SpicyAD

  View on GitHub
  SpicyAD is a C# Active Directory penetration testing tool designed for authorized security assessments. It combines multiple AD attack te…
  ☆97Dec 23, 2025Updated last month
• SecurityAura / Aura-Research

  View on GitHub
  Repo that hold write-ups of various research projects I did and/or overall InfoSec things I investigated/researched.
  ☆21Jan 5, 2025Updated last year
• Vatshayan / Malware-Scanner-System

  View on GitHub
  Multi-layered malware detection system using static analysis, dynamic browser automation, and external APIs for accurate website threat i…
  ☆13Jun 3, 2025Updated 8 months ago
• Bert-JanP / KustoHawk

  View on GitHub
  KustoHawk is a lightweight incident triage and response tool designed for effective incident response in Microsoft Defender XDR and Micro…
  ☆126Jan 11, 2026Updated last month
• RainbowDynamix / GhostKatz

  View on GitHub
  Dump LSASS via physical memory read primitives in vulnerable kernel drivers
  ☆246Feb 2, 2026Updated last week
• Yara-Rules / yara-tester-bot

  View on GitHub
  Telegram Bot that performs checks of the yararules.com ruleset
  ☆13May 13, 2016Updated 9 years ago
• emdnaia / OdinLdr

  View on GitHub
  Cobaltstrike UDRL with memory evasion
  ☆15May 16, 2024Updated last year
• nkranidiotis / RedAudit-USB

  View on GitHub
  RedAudit is a next-generation Windows forensic and security assessment framework featuring a live cyber-operations GUI built for real inv…
  ☆35Nov 15, 2025Updated 2 months ago
• synacktiv / kcmdump

  View on GitHub
  Dump Kerberos tickets from the KCM database of SSSD
  ☆55Dec 31, 2025Updated last month
• lum8rjack / caddy-c2

  View on GitHub
  Caddy v2 module to filter requests based on C2 profiles
  ☆46Apr 24, 2025Updated 9 months ago
• AI-redteam / sherl0ck

  View on GitHub
  Search an entire directory of .eml email files for a word or phrase... in over 100 languages.
  ☆12Feb 28, 2023Updated 2 years ago
• Rannden-SHA / CyberLand-Labs

  View on GitHub
  Este script es una herramienta avanzada diseñada para administrar, crear y personalizar máquinas virtuales en entornos Docker, especialme…
  ☆17Feb 2, 2025Updated last year
• garrettfoster13 / CVE-2025-59501

  View on GitHub
  CVE-2025-59501 POC code
  ☆25Nov 20, 2025Updated 2 months ago
• mez-0 / citadel

  View on GitHub
  A Payload Analysis Framework
  ☆116Oct 9, 2025Updated 4 months ago
• ricardojoserf / w11_shadow_copies

  View on GitHub
  Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11
  ☆81Jan 26, 2026Updated 2 weeks ago
• monsieurPale / RSA-Backdoor

  View on GitHub
  Generate backdoored RSA keys using SETUP
  ☆232Dec 1, 2025Updated 2 months ago
• EmergingThreats / pdf_object_hashing

  View on GitHub
  ☆82Oct 2, 2025Updated 4 months ago
• absholi7ly / -CVE-2024-21683-RCE-in-Confluence-Data-Center-and-Server

  View on GitHub
  This vulnerability could allow an attacker to take complete control of a vulnerable Confluence server. This could allow the attacker to s…
  ☆11May 24, 2024Updated last year
• vallejocc / Malware-Analysis-scripts

  View on GitHub
  Scripts targeting specific families
  ☆13Jul 3, 2017Updated 8 years ago
• ChetanChoudhary1 / ZeroCrumb

  View on GitHub
  Dumping App Bound Protected Credentials & Cookies Without Privileges.
  ☆59Nov 4, 2025Updated 3 months ago
• 0xRedpoll / ludus_mythic_teamserver

  View on GitHub
  Ludus role for deploying a Mythic Teamserver onto Linux servers
  ☆23Mar 16, 2025Updated 10 months ago
• rstcloud / rstcloud-import2misp

  View on GitHub
  Scripts for importing threat feeds and CTI articles, blogs, and reports into MISP.
  ☆18Jun 16, 2025Updated 7 months ago
• praetorian-inc / swarmer

  View on GitHub
  A tool to convert windows registry export files into windows hive files that can be used to replace NTUSER.MAN
  ☆81Jan 26, 2026Updated 2 weeks ago
• tjnull / Ludus-FastMCP

  View on GitHub
  Ludus FastMCP enables AI-powered management of Ludus cyber ranges through natural language commands. The server exposes **157 tools** acr…
  ☆69Dec 31, 2025Updated last month
• logangoins / BadTakeover-BOF

  View on GitHub
  Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover
  ☆85Oct 20, 2025Updated 3 months ago
• ThanniKudam / TopazTerminator

  View on GitHub
  Just another EDR killer
  ☆94Jan 21, 2026Updated 3 weeks ago
• CSDSkilling / blueprints

  View on GitHub
  ☆21Jul 16, 2025Updated 6 months ago