SpecterOps/ConfigManBearPig external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

SpecterOps/ConfigManBearPig

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/SpecterOps/ConfigManBearPig)

Close

SpecterOps / ConfigManBearPigView on GitHubMore

• External links
• Readme badge

PowerShell collector for adding SCCM attack paths to BloodHound with OpenGraph

☆78Mar 13, 2026Updated last week

Alternatives and similar repositories for ConfigManBearPig

Users that are interested in ConfigManBearPig are comparing it to the libraries listed below

• garrettfoster13 / CVE-2025-59501

  View on GitHub
  CVE-2025-59501 POC code
  ☆25Nov 20, 2025Updated 3 months ago
• ricardojoserf / AutoPtT

  View on GitHub
  Automated Pass-the-Ticket (PtT) attack. Standalone alternative to Rubeus and Mimikatz for this attack. Implemented in C#, C++, Crystal, P…
  ☆128Feb 17, 2026Updated last month
• Scoubi / BloodSOCer

  View on GitHub
  ☆58Dec 10, 2025Updated 3 months ago
• horizon3ai / CVE-2025-64155

  View on GitHub
  CVE-2025-64155: Fortinet FortiSIEM Argument Injection to Remote Code Execution
  ☆31Jan 13, 2026Updated 2 months ago
• curi0usJack / Ludus-MDE-MDI-Roles

  View on GitHub
  Ludus roles to deploy ASR rules and MDI auditing settings
  ☆24Aug 5, 2025Updated 7 months ago
• Fudgedotdotdot / nimpersonate

  View on GitHub
  Impersonate Windows tokens in Nim
  ☆23Aug 4, 2025Updated 7 months ago
• monsieurPale / BreakFAST

  View on GitHub
  Proof of concept for Kerberos Armoring abuse.
  ☆82Dec 12, 2025Updated 3 months ago
• secorizon / MSFinger

  View on GitHub
  Microsoft Network Service Fingerprinting Tool
  ☆69Jan 2, 2026Updated 2 months ago
• logangoins / BadTakeover-BOF

  View on GitHub
  Beacon Object File (BOF) for Using the BadSuccessor Technique for Account Takeover
  ☆86Oct 20, 2025Updated 4 months ago
• ghostvectoracademy / DLLHijackHunter

  View on GitHub
  Automated DLL Hijacking Discovery, Validation, and Confirmation. Turning local misconfigurations into weaponized, confirmed attack paths.
  ☆225Updated this week
• Croko-fr / ludus-templates

  View on GitHub
  Repository for Ludus french templates
  ☆23Mar 1, 2026Updated 2 weeks ago
• VirtualAlllocEx / CS-EDR-Enumeration

  View on GitHub
  Cobalt Strike Aggressor Script for identifying security products on Windows hosts — six enumeration methods rated by noise level, from si…
  ☆41Feb 6, 2026Updated last month
• professor-moody / scorch

  View on GitHub
  ☆43Dec 24, 2025Updated 2 months ago
• mdsecactivebreach / RegPwn

  View on GitHub
  ☆56Updated this week
• praetorian-inc / brutus

  View on GitHub
  Fast, zero-dependency credential testing tool in Go. Brute force SSH, MySQL, PostgreSQL, Redis, MongoDB, SMB, and 20+ protocols. Hydra al…
  ☆154Updated this week
• Coontzy1 / WSUScripts

  View on GitHub
  ☆20Sep 6, 2025Updated 6 months ago
• SadProcessor / BloodHoundOperator

  View on GitHub
  BloodHound PowerShell client
  ☆78Dec 10, 2025Updated 3 months ago
• mubix / Find-WSUS

  View on GitHub
  Helps defenders find their WSUS configurations in the wake of CVE-2025-59287
  ☆46Oct 28, 2025Updated 4 months ago
• mallo-m / AxiomSecrets

  View on GitHub
  Dump protected files (SAM,SYSTEM,SECURITY) by parsing the raw NTFS partition
  ☆37Nov 11, 2025Updated 4 months ago
• epotseluevskaya / ASPX_WebShell_COFFLoader

  View on GitHub
  ASPX Web Shell with COFF Loader
  ☆112Mar 10, 2026Updated last week
• Shac0x / Invoke-Totem

  View on GitHub
  Token impersonation in PowerShell to execute under the context of another user.
  ☆24Oct 14, 2025Updated 5 months ago
• Hack0ura / WebClientRelayUp

  View on GitHub
  WebClientRelayUp - an universal no-fix local privilege escalation in domain-joined windows workstations in default configuration.
  ☆76Feb 25, 2026Updated 3 weeks ago
• zh54321 / SharePointDumper

  View on GitHub
  PowerShell SharePoint extraction + auditing tool for red/blue/purple teams. Enumerates all SharePoint sites/drives a user can access via …
  ☆117Jan 25, 2026Updated last month
• garrettfoster13 / ldap_bofs

  View on GitHub
  Random BOFs for LDAP tradecraft
  ☆74Sep 9, 2025Updated 6 months ago
• incursi0n / ClipboardStealBOF

  View on GitHub
  An alternative to the builtin clipboard feature in Cobalt Strike that adds the capability to enable/disable and dump the clipboard histor…
  ☆103Jan 9, 2026Updated 2 months ago
• Sq00ky / csharp-portscanner

  View on GitHub
  simple C# portscanner - written for playing around with Metasploit's Execute-Assembly
  ☆10Jul 1, 2023Updated 2 years ago
• RainbowDynamix / GhostKatz

  View on GitHub
  Dump LSASS via physical memory read primitives in vulnerable kernel drivers
  ☆288Feb 2, 2026Updated last month
• Cobalt-Strike / aggressor_script_examples

  View on GitHub
  This repository contains tips, tricks, and examples of aggressor script functions. The intent is to share bite size examples that can be …
  ☆16Aug 12, 2025Updated 7 months ago
• cybrly / badsuccessor

  View on GitHub
  ☆120May 29, 2025Updated 9 months ago
• crtvrffnrt / apimspray

  View on GitHub
  Azure apim mini proxy
  ☆54Feb 16, 2026Updated last month
• kypvas / LDIFToBloodHound

  View on GitHub
  A Windows tool that converts LDIF files to BloodHound CE
  ☆31Dec 20, 2025Updated 2 months ago
• grayhatkiller / SharpExShell

  View on GitHub
  SharpExShell automates the DCOM lateral movment technique which abuses ActivateMicrosoftApp method of Excel application.
  ☆75May 1, 2024Updated last year
• elastic / Silhouette

  View on GitHub
  Keep it secret, keep it safe
  ☆78Feb 6, 2025Updated last year
• kfallahi / NTLMPasswordChanger

  View on GitHub
  PowerShell tool that shows how to read and write NTLM OWF values via samlib.dll.
  ☆72Oct 22, 2025Updated 4 months ago
• dis0rder0x00 / DbgNexum

  View on GitHub
  Shellcode injection using the Windows Debugging API
  ☆171Jan 4, 2026Updated 2 months ago
• andrecrafts / Bloodhound-query-legacy2ce

  View on GitHub
  A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …
  ☆37Oct 1, 2025Updated 5 months ago
• S3cur3Th1sSh1t / SharpVeeamDecryptor

  View on GitHub
  Decrypt Veeam database passwords
  ☆221Dec 8, 2025Updated 3 months ago
• The-Viper-One / Invoke-PassTheCert

  View on GitHub
  Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆61Apr 13, 2025Updated 11 months ago
• CodeXTF2 / Cobaltstrike_BOFLoader

  View on GitHub
  open source port/reimplementation of the Cobalt Strike BOF Loader as is
  ☆69Mar 8, 2026Updated last week