Alternatives and similar repositories for JuicyPotatoNG:

Users that are interested in JuicyPotatoNG are comparing it to the libraries listed below

• outflanknl / C2-Tool-Collection
  A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techni…
  ☆1,201Updated last year
• Ridter / noPac
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆855Updated 2 years ago
• ShutdownRepo / pywhisker
  Python version of the C# tool for "Shadow Credentials" attacks
  ☆695Updated last month
• Wh04m1001 / DFSCoerce
  ☆767Updated 2 years ago
• AlmondOffSec / PassTheCert
  Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆608Updated 8 months ago
• zcgonvh / EfsPotato
  Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
  ☆764Updated last year
• skahwah / SQLRecon
  A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
  ☆711Updated 2 months ago
• Tylous / SourcePoint
  SourcePoint is a C2 profile generator for Cobalt Strike command and control servers designed to ensure evasion.
  ☆1,076Updated last year
• decoder-it / LocalPotato
  ☆689Updated last year
• trustedsec / CS-Remote-OPs-BOF
  ☆946Updated last month
• wsummerhill / C2_RedTeam_CheatSheets
  Useful C2 techniques and cheatsheets learned from engagements
  ☆484Updated this week
• daem0nc0re / PrivFu
  Kernel mode WinDbg extension and PoCs for token privilege investigation.
  ☆844Updated 2 months ago
• icyguider / Shhhloader
  Syscall Shellcode Loader (Work in Progress)
  ☆1,175Updated 10 months ago
• mgeeky / PackMyPayload
  A PoC that packages payloads into output containers to evade Mark-of-the-Web flag & demonstrate risks associated with container file form…
  ☆909Updated 9 months ago
• mgeeky / RedWarden
  Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation
  ☆957Updated 2 years ago
• kyleavery / AceLdr
  Cobalt Strike UDRL for memory scanner evasion.
  ☆911Updated 9 months ago
• trustedsec / CS-Situational-Awareness-BOF
  Situational Awareness commands implemented using Beacon Object Files
  ☆1,360Updated last week
• BC-SECURITY / Malleable-C2-Profiles
  Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike & Empire.
  ☆360Updated last year
• c3c / ADExplorerSnapshot.py
  ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound, and also supports full-object dumping …
  ☆940Updated 2 weeks ago
• wh0amitz / PetitPotato
  Local privilege escalation via PetitPotam (Abusing impersonate privileges).
  ☆426Updated 2 years ago
• dirkjanm / PKINITtools
  Tools for Kerberos PKINIT and relaying to AD CS
  ☆717Updated 2 months ago
• mgeeky / cobalt-arsenal
  My collection of battle-tested Aggressor Scripts for Cobalt Strike 4.0+
  ☆1,072Updated last year
• praetorian-inc / PortBender
  TCP Port Redirection Utility
  ☆705Updated 2 years ago
• itm4n / FullPowers
  Recover the default privilege set of a LOCAL/NETWORK SERVICE account
  ☆607Updated 4 years ago
• antonioCoco / RunasCs
  RunasCs - Csharp and open version of windows builtin runas.exe
  ☆1,149Updated 8 months ago
• bats3c / darkarmour
  Windows AV Evasion
  ☆766Updated 4 years ago
• mpgn / BackupOperatorToDA
  From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
  ☆418Updated 2 months ago
• SaadAhla / FilelessPELoader
  Loading Remote AES Encrypted PE in memory , Decrypted it and run it
  ☆929Updated last year
• assume-breach / Home-Grown-Red-Team
  ☆706Updated last year
• Dec0ne / DavRelayUp
  DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …
  ☆540Updated last year