Alternatives and similar repositories for Practice-AD-CS-Domain-Escalation

Users that are interested in Practice-AD-CS-Domain-Escalation are comparing it to the libraries listed below

• akamai / BadSuccessor
  ☆195Updated 3 months ago
• login-securite / conpass
  Continuous password spraying tool
  ☆192Updated 6 months ago
• Orange-Cyberdefense / LinikatzV2
  linikatz is a tool to attack AD on UNIX
  ☆150Updated last year
• Leo4j / Invoke-SessionHunter
  Retrieve and display information about active user sessions on remote computers. No admin privileges required.
  ☆192Updated last year
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆177Updated 3 months ago
• Friends-Security / SharpExclusionFinder
  Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …
  ☆215Updated 11 months ago
• CompassSecurity / bloodhoundce-resources
  ☆71Updated last month
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆242Updated 6 months ago
• 0xBallpoint / LOAD
  Lord Of Active Directory - automatic vulnerable active directory on AWS
  ☆147Updated last year
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆165Updated 2 months ago
• RedTeamPentesting / keycred
  Generate and Manage KeyCredentialLinks
  ☆164Updated last month
• ad0nis / ntlm_relay_gat
  ☆161Updated last year
• TheManticoreProject / FindGPPPasswords
  A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts
  ☆164Updated 2 months ago
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆263Updated 4 months ago
• CyberSecurityUP / Awesome-EDR-Evasion
  ☆90Updated 7 months ago
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆216Updated 7 months ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆176Updated 2 years ago
• cybrly / badsuccessor
  ☆112Updated 3 months ago
• seriotonctf / cme-nxc-cheat-sheet
  A cheatsheet for NetExec
  ☆139Updated 3 months ago
• cisagov / snafflepy
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆109Updated 2 months ago
• IAMinZoho / OFFSEC-PowerShell
  My Favorite Offensive Security Scripts
  ☆76Updated 4 months ago
• synacktiv / SCCMSecrets
  SCCMSecrets.py aims at exploiting SCCM policies distribution for credentials harvesting, initial access and lateral movement.
  ☆241Updated last week
• HuskyHacks / SharpTokenFinder
  C# implementation of TokenFinder. Steal M365 access tokens from Office Desktop apps
  ☆140Updated last year
• cybersectroll / TrollAMSI
  ☆182Updated 3 months ago
• sikumy / spearspray
  Enhance Your Active Directory Password Spraying with User Intelligence.
  ☆249Updated 3 weeks ago
• synacktiv / OUned
  The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning
  ☆142Updated 5 months ago
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆265Updated 2 months ago
• coffeegist / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆304Updated last month
• garrettfoster13 / aced
  ☆191Updated 3 weeks ago
• stevenyu113228 / BloodHound-MCP
  ☆154Updated 5 months ago