Alternatives and similar repositories for RunAsPasswd

Users that are interested in RunAsPasswd are comparing it to the libraries listed below

• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆117Updated last year
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆92Updated 2 years ago
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆114Updated 2 years ago
• mertdas / SharpLateral
  Lateral Movement
  ☆124Updated last year
• MzHmO / psexec_noinstall
  Repository contains psexec, which will help to exploit the forgotten pipe
  ☆170Updated last year
• Wh04m1001 / DiagTrackEoP
  ☆88Updated 3 years ago
• werdhaihai / SharpAltShellCodeExec
  Alternative Shellcode Execution Via Callbacks in C# with P/Invoke
  ☆84Updated 2 years ago
• rasta-mouse / SCMUACBypass
  ☆100Updated 2 years ago
• leftp / DPAPISnoop
  A C# tool to output crackable DPAPI hashes from user MasterKeys
  ☆139Updated last year
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆52Updated 3 years ago
• praetorian-inc / ADFSRelay
  Proof of Concept Utilities Developed to Research NTLM Relaying Attacks Targeting ADFS
  ☆186Updated 3 years ago
• Leo4j / SessionExec
  Execute commands in other Sessions
  ☆89Updated last year
• ewby / Mockingjay_BOF
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆157Updated 2 years ago
• nopbrick / SeeProxy
  Golang reverse proxy with CobaltStrike malleable profile validation.
  ☆110Updated 2 years ago
• Hagrid29 / DumpAADSyncCreds
  C# implementation of Get-AADIntSyncCredentials from AADInternals, which extracts Azure AD Connect credentials to AD and Azure AD from AAD…
  ☆42Updated 2 years ago
• blackarrowsec / Handly
  Abuse leaked token handles.
  ☆132Updated last year
• zblurx / acltoolkit
  ACL abuse swiss-knife
  ☆125Updated 2 years ago
• puzzlepeaches / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆34Updated 2 years ago
• REDMED-X / InjectKit
  Modified versions of the Cobalt Strike Process Injection Kit
  ☆102Updated last year
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆86Updated 3 years ago
• lefayjey / SharpSQLPwn
  C# tool to identify and exploit weaknesses within MSSQL instances in Active Directory environments
  ☆112Updated 3 years ago
• dmcxblue / SharpGhostTask
  A C# port from Invoke-GhostTask
  ☆118Updated last year
• waawaa / AMSI_Rubeus_bypass
  ☆71Updated 3 years ago
• trustedsec / PPLFaultDumpBOF
  ☆143Updated 2 years ago
• susMdT / SharpAgent
  C# havoc implant
  ☆101Updated 2 years ago
• mlcsec / ASRenum-BOF
  Cobalt Strike BOF that identifies Attack Surface Reduction (ASR) rules, actions, and exclusion locations
  ☆160Updated last year
• iamagarre / BadExclusionsNWBO
  BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
  ☆75Updated last year
• xpn / ntlmquic
  POC tools for exploring SMB over QUIC protocol
  ☆127Updated 3 years ago
• kymb0 / Stealth_shellcode_runners
  ☆57Updated last year
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆87Updated 3 years ago