Alternatives and similar repositories for Invoke-RDPThief

Users that are interested in Invoke-RDPThief are comparing it to the libraries listed below

• Thunter-HackTeam / EvilentCoerce
  ☆151Updated 7 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181Updated 7 months ago
• synacktiv / CVE-2024-43468
  ☆94Updated 11 months ago
• p4p1 / havoc-ligolo
  A Havoc UI tool to pivot onto a machine using ligolo-ng
  ☆49Updated last year
• OleFredrik1 / remoteKrbRelayx
  A tool for coercing and relaying Kerberos authentication over DCOM and RPC.
  ☆144Updated 5 months ago
• 7hePr0fess0r / ADCSDevilCOM
  A C# tool for requesting certificates from ADCS using DCOM over SMB. This tool allows you to remotely request X.509 certificates from CA …
  ☆162Updated last month
• EvilBytecode / Lifetime-Amsi-EtwPatch
  Two in one, patch lifetime powershell console, no more etw and amsi!
  ☆99Updated 8 months ago
• cybrly / badsuccessor
  ☆120Updated 7 months ago
• t3hbb / PanGP_Extractor
  Tool to extract username and password of current user from PanGPA in plaintext
  ☆88Updated last year
• andrecrafts / Bloodhound-query-legacy2ce
  A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …
  ☆34Updated 2 months ago
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆212Updated last year
• Aur3ns / LsassStealer
  Morpheus is an lsass stealer that extracts lsass.exe in RAM and exfiltrates it via forged and crypted NTP packets. For authorized testin…
  ☆120Updated 6 months ago
• rubenformation / ms-photos_NTLM_Leak
  New 0 day vulnerability allowing to leak NTLM hashes from browsers with one click
  ☆176Updated last month
• cisagov / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆115Updated 5 months ago
• duhirsch / MoveEdr
  Permanently disable EDRs as local admin
  ☆122Updated last week
• inb1ts / CSSHide
  Encodes a payload within a generated mock-CSS file
  ☆59Updated 2 years ago
• Shac0x / Wonka
  Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…
  ☆155Updated 2 months ago
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆42Updated last year
• rtecCyberSec / RAITrigger
  Local SYSTEM auth trigger for relaying
  ☆168Updated 5 months ago
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆280Updated 8 months ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆154Updated last month
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆128Updated 10 months ago
• monsieurPale / BreakFAST
  Proof of concept for Kerberos Armoring abuse.
  ☆54Updated 2 weeks ago
• NtDallas / Svartalfheim
  Stage 0
  ☆168Updated last year
• logangoins / Stifle
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆150Updated 10 months ago
• gsmith257-cyber / better-sliver
  Adversary Emulation Framework
  ☆128Updated 5 months ago
• AetherBlack / abuseACL
  A python script to automatically list vulnerable Windows ACEs/ACLs.
  ☆62Updated 6 months ago
• decoder-it / printerbugnew
  The DCERPC only printerbug.py version
  ☆182Updated last month
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆83Updated 2 years ago
• Maldev-Academy / ElectronVulnScanner
  Automatically scan the file system to identify Electron applications vulnerable to ASAR tampering.
  ☆141Updated last month