Alternatives and similar repositories for tickey:

Users that are interested in tickey are comparing it to the libraries listed below

• nopfor / ntlm_challenger
  Parse NTLM challenge messages over HTTP and SMB
  ☆144Updated 2 years ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆166Updated 2 years ago
• outflanknl / Recon-AD
  Recon-AD, an AD recon tool based on ADSI and reflective DLL’s
  ☆322Updated 5 years ago
• Mr-Un1k0d3r / PoisonHandler
  lateral movement techniques that can be used during red team exercises
  ☆269Updated 5 years ago
• preempt / ntlm-scanner
  A simple python tool based on Impacket that tests servers for various known NTLM vulnerabilities
  ☆203Updated 4 years ago
• skelsec / msldap
  LDAP library for auditing MS AD
  ☆404Updated last week
• initstring / lxd_root
  Linux privilege escalation via LXD
  ☆132Updated 4 years ago
• bohops / GhostBuild
  GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects
  ☆247Updated 4 years ago
• elnerd / Get-NetNTLM
  Powershell module to get the NetNTLMv2 hash of the current user
  ☆93Updated 2 years ago
• bohops / WSMan-WinRM
  A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object
  ☆232Updated 4 years ago
• leftp / VmdkReader
  .NET 4.0 Console App to browse VMDK / VHD images and extract files
  ☆188Updated 4 years ago
• violentlydave / mkhtaccess_red
  Auto-generate an HTaccess for payload delivery -- automatically pulls ips/nets/etc from known sandbox companies/sources that have been se…
  ☆168Updated 4 years ago
• HarmJ0y / ASREPRoast
  Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.
  ☆198Updated 6 years ago
• redteaminfra / redteam-infra
  ☆103Updated 4 months ago
• xforcered / StandIn
  StandIn is a small .NET35/45 AD post-exploitation toolkit
  ☆254Updated 3 years ago
• fox-it / LDAPFragger
  ☆189Updated 4 years ago
• lexfo / rpc2socks
  Post-exploit tool that enables a SOCKS tunnel via a Windows host using an extensible custom RPC proto over SMB through a named pipe.
  ☆183Updated 3 years ago
• ZeroDayLab / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆221Updated 3 years ago
• fox-it / Invoke-ACLPwn
  ☆518Updated 2 years ago
• samratashok / RACE
  RACE is a PowerShell module for executing ACL attacks against Windows targets.
  ☆215Updated last year
• RedSiege / hot-manchego
  Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.
  ☆145Updated 4 years ago
• vletoux / SpoolerScanner
  Check if MS-RPRN is remotely available with powershell/c#
  ☆172Updated 6 years ago
• HarmJ0y / DAMP
  The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification
  ☆377Updated 5 years ago
• TsukiCTF / Lovely-Potato
  Automating juicy potato local privilege escalation exploit for penetration testers
  ☆140Updated 3 years ago
• sensepost / assless-chaps
  Crack MSCHAPv2 challenge/responses quickly using a database of NT hashes
  ☆129Updated 11 months ago
• bb00 / zer0dump
  Abuse CVE-2020-1472 (Zerologon) to take over a domain and then repair the local stored machine account password.
  ☆176Updated last year
• chryzsh / awesome-bloodhound
  A curated list of awesome BloodhoundAD resources
  ☆232Updated 2 years ago
• cnotin / SplunkWhisperer2
  Local privilege escalation, or remote code execution, through Splunk Universal Forwarder (UF) misconfigurations
  ☆246Updated 2 years ago
• antman1p / Conf-Thief
  A Red Team tool for exfiltrating sensitive data from Confluence pages.
  ☆107Updated 2 years ago
• wavestone-cdt / AD-security-workshop
  Resources for our Active Directory security workshops
  ☆140Updated 3 years ago