LudusHound is a tool for red and blue teams that transforms BloodHound data into a fully functional, Active Directory replica environment via Ludus for controlled testing.
☆377Sep 3, 2025Updated 9 months ago
Alternatives and similar repositories for LudusHound
Users that are interested in LudusHound are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆395Apr 26, 2026Updated last month
- ☆139Nov 17, 2025Updated 6 months ago
- SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…☆883Feb 3, 2024Updated 2 years ago
- AI-based Ludus range configuration builder☆29May 6, 2025Updated last year
- A Python POC for CRED1 over SOCKS5☆171Oct 5, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Azure Post Exploitation Framework☆247Oct 27, 2025Updated 7 months ago
- Windows protocol library, including SMB and RPC implementations, among others.☆787Apr 14, 2026Updated last month
- Go (formerly PowerShell) collector for adding MSSQL attack paths to BloodHound with OpenGraph☆333Updated this week
- PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirector…☆405Jan 14, 2026Updated 4 months ago
- AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover se…☆1,533Mar 18, 2026Updated 2 months ago
- AWSDoor is a red team automation tool designed to simulate advanced attacker behavior in AWS environments☆36Sep 17, 2025Updated 8 months ago
- Proof of Concept (PoC) .NET tool for remotely killing EDR with WDAC☆434Sep 29, 2025Updated 8 months ago
- Initial Access and Post-Exploitation Tool for Entra ID and M365 with a browser-based GUI☆1,307May 4, 2026Updated last month
- ☆41Updated this week
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- Advanced Active Directory network topology analyzer with SMB validation, multiple authentication methods (password/NTLM/Kerberos), and co…☆669May 16, 2026Updated 3 weeks ago
- Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.☆213Feb 16, 2026Updated 3 months ago
- ACL Viewer for Windows☆133May 4, 2025Updated last year
- A self-hosted sandbox for red teams to test payloads against modern detection before deployment. MCP integration lets an LLM agent drive …☆1,444May 5, 2026Updated last month
- Hijacks code execution via overwriting Control Flow Guard pointers in combase.dll☆154Apr 18, 2025Updated last year
- SOCKS5 proxy tool that uses Azure Storage services as a means of communication.☆355Mar 21, 2026Updated 2 months ago
- Scripts to interact with Microsoft Graph APIs☆46Nov 7, 2024Updated last year
- Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel☆406Feb 23, 2024Updated 2 years ago
- The OUned project automating Active Directory Organizational Units ACL exploitation through gPLink poisoning☆160Nov 2, 2025Updated 7 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…☆176Sep 3, 2025Updated 9 months ago
- Tools for interacting with authentication packages using their individual message protocols☆439Jun 1, 2026Updated last week
- Lab used for workshop and CTF☆517Feb 3, 2026Updated 4 months ago
- BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions☆357Nov 19, 2024Updated last year
- Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…☆311Mar 28, 2026Updated 2 months ago
- Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel☆755Sep 3, 2025Updated 9 months ago
- A C# utility for interacting with SCCM☆694Mar 30, 2026Updated 2 months ago
- Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy☆170Nov 17, 2025Updated 6 months ago
- StandIn is a small .NET35/45 AD post-exploitation toolkit☆860Dec 2, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily☆306May 11, 2026Updated 3 weeks ago
- SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…☆918Updated this week
- .NET Post-Exploitation Utility for Abusing Strong Explicit Certificate Mappings in ADCS☆151Feb 10, 2025Updated last year
- .NET post-exploitation toolkit for Active Directory reconnaissance and exploitation☆400Jul 23, 2025Updated 10 months ago
- Automating the MITM attack on WSUS☆366Apr 3, 2026Updated 2 months ago
- Offensive GPO dumping and analysis tool that leverages and enriches BloodHound data☆376May 18, 2026Updated 3 weeks ago
- Small utility to chunk up a large BloodHound JSON file into smaller files for importing.☆97Apr 13, 2023Updated 3 years ago