Alternatives and similar repositories for DLLHound

Users that are interested in DLLHound are comparing it to the libraries listed below

• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆264Updated last month
• trustedsec / specula
  ☆206Updated 2 months ago
• logangoins / SharpSuccessor
  SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
  ☆332Updated 3 months ago
• wietze / Invoke-ArgFuscator
  Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…
  ☆233Updated 4 months ago
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆283Updated 2 weeks ago
• 0xsp-SRD / MDE_Enum
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆205Updated last year
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆241Updated 6 months ago
• rtecCyberSec / BitlockMove
  Lateral Movement via Bitlocker DCOM interfaces & COM Hijacking
  ☆330Updated last month
• ZERODETECTION / MSC_Dropper
  ☆194Updated last year
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆265Updated 9 months ago
• akamai / BadSuccessor
  ☆193Updated 3 months ago
• Friends-Security / SharpExclusionFinder
  Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …
  ☆213Updated 10 months ago
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆214Updated 6 months ago
• mandiant / msi-search
  ☆287Updated 2 years ago
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆239Updated 3 months ago
• cybersectroll / TrollAMSI
  ☆182Updated 2 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆168Updated 3 months ago
• CrowdStrike / sccmhound
  A BloodHound collector for Microsoft Configuration Manager
  ☆345Updated last month
• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆206Updated last month
• decoder-it / KrbRelay-SMBServer
  ☆221Updated 10 months ago
• oldkingcone / BYOSI
  Evade EDR's the simple way, by not touching any of the API's they hook.
  ☆151Updated 6 months ago
• mandiant / ccmpwn
  ☆212Updated last year
• arosenmund / defcon33_silence_kill_edr
  ☆209Updated this week
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆204Updated 5 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆174Updated 3 months ago
• login-securite / conpass
  Continuous password spraying tool
  ☆192Updated 5 months ago
• deepinstinct / NoFilter
  ☆300Updated 9 months ago
• RedSiege / Jigsaw
  Hide shellcode by shuffling bytes into a random array and reconstruct at runtime
  ☆198Updated 4 months ago
• andreisss / Ghosting-AMSI
  Ghosting-AMSI
  ☆211Updated 4 months ago
• Offensive-Panda / LsassReflectDumping
  This tool leverages the Process Forking technique using the RtlCreateProcessReflection API to clone the lsass.exe process. Once the clone…
  ☆207Updated 10 months ago