Alternatives and similar repositories for RunasCs

Users that are interested in RunasCs are comparing it to the libraries listed below

• FSecureLABS / SharpGPOAbuse
  SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GP…
  ☆1,246Updated 4 years ago
• GhostPack / SharpDPAPI
  SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
  ☆1,351Updated last year
• dirkjanm / krbrelayx
  Kerberos relaying and unconstrained delegation abuse toolkit
  ☆1,432Updated 8 months ago
• itm4n / FullPowers
  Recover the default privilege set of a LOCAL/NETWORK SERVICE account
  ☆649Updated 5 years ago
• CCob / SweetPotato
  Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
  ☆1,773Updated last year
• antonioCoco / RogueWinRM
  Windows Local Privilege Escalation from Service Account to System
  ☆873Updated 5 years ago
• r3motecontrol / Ghostpack-CompiledBinaries
  Compiled Binaries for Ghostpack
  ☆1,500Updated 11 months ago
• GhostPack / SharpUp
  SharpUp is a C# port of various PowerUp functionality.
  ☆1,409Updated last year
• S3cur3Th1sSh1t / PowerSharpPack
  ☆1,633Updated 6 months ago
• eladshamir / Whisker
  Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, …
  ☆913Updated 11 months ago
• GhostPack / Certify
  Active Directory certificate abuse.
  ☆1,834Updated last month
• antonioCoco / RoguePotato
  Another Windows Local Privilege Escalation from Service Account to System
  ☆1,132Updated 4 years ago
• ShutdownRepo / pywhisker
  Python version of the C# tool for "Shadow Credentials" attacks
  ☆807Updated last month
• Greenwolf / ntlm_theft
  A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
  ☆1,246Updated last month
• antonioCoco / JuicyPotatoNG
  Another Windows Local Privilege Escalation from Service Account to System
  ☆919Updated 2 years ago
• RythmStick / AMSITrigger
  The Hunt for Malicious Strings
  ☆1,300Updated 5 months ago
• leechristensen / SpoolSample
  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…
  ☆1,039Updated last year
• Ridter / noPac
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆937Updated 2 years ago
• CravateRouge / bloodyAD
  BloodyAD is an Active Directory Privilege Escalation Framework
  ☆1,943Updated this week
• Kevin-Robertson / Powermad
  PowerShell MachineAccountQuota and DNS exploit tools
  ☆1,385Updated 2 years ago
• antonioCoco / ConPtyShell
  ConPtyShell - Fully Interactive Reverse Shell for Windows
  ☆1,160Updated 2 years ago
• fortra / nanodump
  The swiss army knife of LSASS dumping
  ☆2,013Updated last year
• mandiant / SharPersist
  ☆1,510Updated 2 years ago
• SpecterOps / SharpHound
  C# Data Collector for BloodHound
  ☆1,081Updated this week
• dirkjanm / PKINITtools
  Tools for Kerberos PKINIT and relaying to AD CS
  ☆833Updated 9 months ago
• Dec0ne / KrbRelayUp
  KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…
  ☆1,609Updated 3 years ago
• bats3c / darkarmour
  Windows AV Evasion
  ☆810Updated 5 years ago
• antonioCoco / RemotePotato0
  Windows Privilege Escalation from User to Domain Admin.
  ☆1,416Updated 2 years ago
• rasta-mouse / ThreatCheck
  Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
  ☆1,329Updated last year
• giuliano108 / SeBackupPrivilege
  Use SE_BACKUP_NAME/SeBackupPrivilege to access objects you shouldn't have access to
  ☆400Updated 12 years ago