Alternatives and similar repositories for RunasCs

Users that are interested in RunasCs are comparing it to the libraries listed below

• FSecureLABS / SharpGPOAbuse
  SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GP…
  ☆1,269Updated 4 years ago
• itm4n / FullPowers
  Recover the default privilege set of a LOCAL/NETWORK SERVICE account
  ☆657Updated 5 years ago
• GhostPack / SharpDPAPI
  SharpDPAPI is a C# port of some Mimikatz DPAPI functionality.
  ☆1,369Updated last year
• dirkjanm / krbrelayx
  Kerberos relaying and unconstrained delegation abuse toolkit
  ☆1,470Updated 10 months ago
• CCob / SweetPotato
  Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
  ☆1,785Updated last year
• S3cur3Th1sSh1t / PowerSharpPack
  ☆1,643Updated 7 months ago
• antonioCoco / RogueWinRM
  Windows Local Privilege Escalation from Service Account to System
  ☆879Updated 5 years ago
• GhostPack / Certify
  Active Directory certificate abuse.
  ☆1,865Updated last month
• eladshamir / Whisker
  Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, …
  ☆925Updated last year
• antonioCoco / RoguePotato
  Another Windows Local Privilege Escalation from Service Account to System
  ☆1,137Updated 4 years ago
• GhostPack / SharpUp
  SharpUp is a C# port of various PowerUp functionality.
  ☆1,431Updated last year
• leechristensen / SpoolSample
  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…
  ☆1,054Updated last year
• r3motecontrol / Ghostpack-CompiledBinaries
  Compiled Binaries for Ghostpack
  ☆1,546Updated last year
• RythmStick / AMSITrigger
  The Hunt for Malicious Strings
  ☆1,323Updated 6 months ago
• ShutdownRepo / pywhisker
  Python version of the C# tool for "Shadow Credentials" attacks
  ☆820Updated 2 months ago
• antonioCoco / JuicyPotatoNG
  Another Windows Local Privilege Escalation from Service Account to System
  ☆923Updated 3 years ago
• Greenwolf / ntlm_theft
  A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
  ☆1,278Updated 2 months ago
• Ridter / noPac
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆947Updated 2 years ago
• Kevin-Robertson / Powermad
  PowerShell MachineAccountQuota and DNS exploit tools
  ☆1,400Updated 2 years ago
• antonioCoco / ConPtyShell
  ConPtyShell - Fully Interactive Reverse Shell for Windows
  ☆1,167Updated 2 years ago
• dirkjanm / PKINITtools
  Tools for Kerberos PKINIT and relaying to AD CS
  ☆849Updated 11 months ago
• mandiant / SharPersist
  ☆1,523Updated 2 years ago
• giuliano108 / SeBackupPrivilege
  Use SE_BACKUP_NAME/SeBackupPrivilege to access objects you shouldn't have access to
  ☆408Updated 12 years ago
• bats3c / darkarmour
  Windows AV Evasion
  ☆818Updated 5 years ago
• CravateRouge / bloodyAD
  BloodyAD is an Active Directory Privilege Escalation Framework
  ☆2,015Updated last month
• b4rtik / SharpKatz
  Porting of mimikatz sekurlsa::logonpasswords, sekurlsa::ekeys and lsadump::dcsync commands
  ☆1,011Updated 4 years ago
• SpecterOps / SharpHound
  C# Data Collector for BloodHound
  ☆1,126Updated last week
• c3c / ADExplorerSnapshot
  ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound via BOFHound, and also supports full-ob…
  ☆1,020Updated 2 weeks ago
• Dec0ne / KrbRelayUp
  KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…
  ☆1,619Updated 3 years ago
• rasta-mouse / ThreatCheck
  Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
  ☆1,359Updated last year