Alternatives and similar repositories for DecryptRecoveryLAPS_RPC

Users that are interested in DecryptRecoveryLAPS_RPC are comparing it to the libraries listed below

• Octoberfest7 / ThreadCPUAssignment_POC

  View on GitHub
  A small experiment on assigning a processes threads a specific CPU and then blocking it with a high priority thread
  ☆30Sep 24, 2025Updated 4 months ago
• kleiton0x00 / RtlHijack

  View on GitHub
  Alternative Read and Write primitives using Rtl* functions the unintended way.
  ☆78Aug 25, 2025Updated 5 months ago
• 0xthirteen / rpc2wc

  View on GitHub
  RPC to WebClient startup
  ☆55Aug 19, 2025Updated 5 months ago
• safedv / GPOAnalyzer

  View on GitHub
  GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.
  ☆28Jun 14, 2024Updated last year
• VoldeSec / BOF-NPPSPY

  View on GitHub
  Porting of NPPSPY by Grzegorz Tworek to 'man in the middle' the user logon process, and store the user's name and password in an unassumi…
  ☆19Apr 24, 2023Updated 2 years ago
• CCob / SQL-BOF

  View on GitHub
  Library of BOFs to interact with SQL servers
  ☆16Dec 6, 2024Updated last year
• scriptchildie / gohellsgate

  View on GitHub
  Golang Implementation of Hell's gate
  ☆21May 31, 2023Updated 2 years ago
• 0xflux / Vectored-Exception-Handling-Squared

  View on GitHub
  Vectored Exception Handling Squared
  ☆29Dec 27, 2025Updated last month
• decoder-it / KrbRelay-SMBServer

  View on GitHub
  ☆235Oct 8, 2024Updated last year
• logangoins / SOAPy

  View on GitHub
  SOAPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆160Jan 23, 2026Updated 3 weeks ago
• p0dalirius / MSSQL-Analysis-Coerce

  View on GitHub
  A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.
  ☆133Oct 1, 2023Updated 2 years ago
• ajm4n / TermHound

  View on GitHub
  ☆26Nov 8, 2024Updated last year
• 0xv1n / RemoteSessionEnum

  View on GitHub
  Remotely Enumerate sessions using undocumented Windows Station APIs
  ☆118Aug 21, 2024Updated last year
• WKL-Sec / docker-cobaltstrike

  View on GitHub
  Docker container for running CobaltStrike 4.7 and above
  ☆24Mar 20, 2025Updated 10 months ago
• OG-Sadpanda / SharpSword

  View on GitHub
  Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly
  ☆117Sep 30, 2024Updated last year
• jfjallid / kerbtool

  View on GitHub
  A tool to interact with Kerberos to request, forge and convert various types of tickets in an Active Directory environment.
  ☆64Jun 10, 2025Updated 8 months ago
• cbwang505 / FilesystemEoPDesktopSystemShell

  View on GitHub
  Folder Or File Delete to Get System Shell on Current Session Desktop
  ☆47Jan 14, 2025Updated last year
• netero1010 / SCCMVNC

  View on GitHub
  A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…
  ☆115Oct 20, 2024Updated last year
• Nomad0x7 / sekken-enum

  View on GitHub
  adws enumeration bof
  ☆162Oct 2, 2025Updated 4 months ago
• Hagrid29 / BOF-CredUI

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
  ☆23Nov 23, 2022Updated 3 years ago
• NioZow / bof-collection

  View on GitHub
  ☆21Feb 22, 2025Updated 11 months ago
• logangoins / Stifle

  View on GitHub
  .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS
  ☆150Feb 10, 2025Updated last year
• Mr-Un1k0d3r / Elevate-System-Trusted-BOF

  View on GitHub
  ☆161Mar 27, 2023Updated 2 years ago
• JayGLXR / NomadLoader

  View on GitHub
  An advanced utility for converting Windows Portable Executable (PE) files to position-independent code (PIC) shellcode. It enables execut…
  ☆64Mar 1, 2025Updated 11 months ago
• Cracked5pider / kaine-assembly

  View on GitHub
  a demo module for the kaine agent to execute and inject assembly modules
  ☆41Aug 28, 2024Updated last year
• temp43487580 / EntraPassTheCert

  View on GitHub
  tool for requesting Entra ID's P2P certificate and authenticating to a remote Entra joinned devices with it
  ☆131Aug 23, 2025Updated 5 months ago
• whokilleddb / ETWListicle

  View on GitHub
  List the ETW provider(s) in the registration table of a process.
  ☆80Sep 20, 2023Updated 2 years ago
• rasta-mouse / SpawnWith

  View on GitHub
  ☆109Feb 17, 2025Updated 11 months ago
• zero2504 / COMouflage

  View on GitHub
  COM-based DLL Surrogate Injection
  ☆140Dec 9, 2025Updated 2 months ago
• ricardojoserf / NativeTokenImpersonate

  View on GitHub
  Impersonate Tokens using only NTAPI functions
  ☆83Apr 4, 2025Updated 10 months ago
• internetangel / ZeroCrumb

  View on GitHub
  Dumping App Bound Protected Credentials & Cookies Without Privileges.
  ☆166May 28, 2025Updated 8 months ago
• 22XploiterCrew-Team / Hash-Cracking

  View on GitHub
  CRACK AND CHECK HASH TYPES IN BULK
  ☆13Jul 28, 2021Updated 4 years ago
• unkbyte / measured_boot_poc

  View on GitHub
  Leveraging TPM2 TCG Logs (Measured Boot) to Detect UEFI Drivers and Pre-Boot Applications
  ☆22Mar 28, 2025Updated 10 months ago
• mammo0 / networkminer-cli

  View on GitHub
  CLI version of NetworkMiner (https://www.netresec.com/?page=NetworkMiner)
  ☆13Dec 1, 2025Updated 2 months ago
• firefart / gosocks

  View on GitHub
  gosocks is a golang based implementation of a socks5 server which supports custom handlers
  ☆12Jan 19, 2026Updated 3 weeks ago
• sud0Ru / NauthNRPC

  View on GitHub
  Enumerate Domain Users Without Authentication
  ☆281Apr 22, 2025Updated 9 months ago
• CCob / PIVert

  View on GitHub
  ☆106Jul 31, 2024Updated last year
• outflanknl / regcertipy

  View on GitHub
  Parses cached certificate templates from a Windows Registry file and displays them in the same style as Certipy does
  ☆94Jul 3, 2025Updated 7 months ago
• rad9800 / FileRenameJunctionsEDRDisable

  View on GitHub
  ☆159Dec 13, 2024Updated last year