Alternatives and similar repositories for dcshadow

Users that are interested in dcshadow are comparing it to the libraries listed below

• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆174Updated 2 months ago
• cybrly / badsuccessor
  ☆112Updated 2 months ago
• SpecterOps / BloodHoundQueryLibrary
  A community-driven collection of BloodHound queries
  ☆104Updated last month
• RedTeamPentesting / keycred
  Generate and Manage KeyCredentialLinks
  ☆159Updated last week
• Thunter-HackTeam / EvilentCoerce
  ☆140Updated 2 months ago
• cisagov / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆106Updated 3 weeks ago
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆65Updated 6 months ago
• t3l3machus / ACEshark
  ACEshark is a utility designed for rapid extraction and analysis of Windows service configurations and Access Control Entries, eliminatin…
  ☆113Updated 6 months ago
• AetherBlack / abuseACL
  A python script to automatically list vulnerable Windows ACEs/ACLs.
  ☆58Updated last month
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆89Updated 3 months ago
• yehia-mamdouh / ZeroProbe
  ZeroProbe is an advanced enumeration and analysis framework designed for exploit developers, security researchers, and red teamers. It pr…
  ☆105Updated 4 months ago
• t3hbb / PanGP_Extractor
  Tool to extract username and password of current user from PanGPA in plaintext
  ☆86Updated 7 months ago
• SpecterOps / MSSQLHound
  PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
  ☆107Updated this week
• dagowda / PrimeEncryptor
  ☆75Updated 3 months ago
• truerustyy / wcreddump
  Fully automated windows credentials dumper, for SAM (classic passwords) and WINHELLO (pins). Requires to be run from a linux machine with…
  ☆77Updated 8 months ago
• sensepost / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆85Updated 4 months ago
• Orange-Cyberdefense / LinikatzV2
  linikatz is a tool to attack AD on UNIX
  ☆149Updated last year
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆82Updated 10 months ago
• ad0nis / ntlm_relay_gat
  ☆159Updated last year
• logangoins / SOAPy
  SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆112Updated this week
• login-securite / conpass
  Continuous password spraying tool
  ☆191Updated 5 months ago
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆203Updated 5 months ago
• synacktiv / CVE-2024-43468
  ☆89Updated 6 months ago
• badsectorlabs / ludus_adaptix_c2
  An Ansible role that install the Adaptix C2 server and/or client on Debian based hosts
  ☆161Updated 2 months ago
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆140Updated last year
• amjcyber / pwnlook
  An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…
  ☆167Updated 9 months ago
• RedTeamPentesting / adauth
  Active Directory Authentication Library
  ☆78Updated 2 weeks ago
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆95Updated 3 months ago
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆253Updated 3 months ago
• mlcsec / Graphpython
  Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
  ☆150Updated 7 months ago