Alternatives and similar repositories for Invoke-PassTheCert

Users that are interested in Invoke-PassTheCert are comparing it to the libraries listed below

• dmcxblue / AzureFunctionRedirector
  ☆50Updated 9 months ago
• jarnovandenbrink / getSPNless
  Python tool to automatically perform SPN-less RBCD attacks.
  ☆112Updated 3 weeks ago
• monsieurPale / BreakFAST
  Proof of concept for Kerberos Armoring abuse.
  ☆77Updated last month
• vysecurity / ExfilServer
  Client-side Encrypted Upload Server Python Script
  ☆66Updated 6 months ago
• dmcxblue / PyObscura
  A python script that automates a C2 Profile build
  ☆48Updated last month
• Helixo32 / GetSystem-LCI
  GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…
  ☆35Updated last year
• Thunter-HackTeam / EvilentCoerce
  ☆158Updated 8 months ago
• 7hePr0fess0r / ADCSDevilCOM
  A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …
  ☆163Updated 3 months ago
• The-Viper-One / Invoke-RDPThief
  Inject RDPThief into memory with PowerShell.
  ☆65Updated last year
• m4lwhere / profilehound
  ProfileHound - BloodHound OpenGraph collector for user profiles stored on domain machines. Make informed decisions about looting secrets …
  ☆147Updated last month
• professor-moody / scorch
  ☆40Updated last month
• OtterHacker / AWSRedirector
  ☆57Updated 11 months ago
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆125Updated last month
• RainbowDynamix / GhostKatz
  Dump LSASS via physical memory read primitives in vulnerable kernel drivers
  ☆131Updated this week
• andrecrafts / Bloodhound-query-legacy2ce
  A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …
  ☆34Updated 4 months ago
• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆45Updated last year
• TheManticoreProject / LDAPWordlistHarvester
  A tool that allows you to extract a client-specific wordlist from the LDAP of an Active Directory.
  ☆57Updated 7 months ago
• mandiant / cleanldap
  ☆106Updated 3 months ago
• Shac0x / Wonka
  Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…
  ☆162Updated 3 months ago
• garrettfoster13 / mssqlkaren
  modified mssqlclient from impacket to extract policies from the SCCM database
  ☆42Updated 3 months ago
• MazX0p / PhantomInjector
  Advanced In-Memory PowerShell Process Injection Framework
  ☆72Updated 6 months ago
• 0xedh / dumpguard_bof
  Beacon Object File (BOF) port of DumpGuard for extracting NTLMv1 hashes from sessions on modern Windows systems.
  ☆200Updated 3 weeks ago
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆42Updated last year
• OtterHacker / ShareFouine
  ☆52Updated last year
• synacktiv / CVE-2024-43468
  ☆94Updated last year
• ZephrFish / LOLSearches
  Living off the land searches for explorer and sharepoint
  ☆92Updated last month
• ghost-ng / slinger
  An impacket-lite cli tool that combines many useful impacket functions using a single session.
  ☆57Updated 3 weeks ago
• SpecterOps / ConfigManBearPig
  PowerShell collector for adding SCCM attack paths to BloodHound with OpenGraph
  ☆56Updated last week
• dmcxblue / AzureRedirector
  A C# project that builds a Web Application which redirects all HTTPS
  ☆26Updated 11 months ago
• sagiol / Terms-of-What
  Terms of Use Conditional Access M365 Evilginx Phishlet
  ☆44Updated 7 months ago