Alternatives and similar repositories for dnschef-ng

Users that are interested in dnschef-ng are comparing it to the libraries listed below

• p0dalirius / pyLDAPWordlistHarvester

  View on GitHub
  A tool to generate a wordlist from the information present in LDAP, in order to crack passwords of domain accounts.
  ☆372Sep 29, 2025Updated 4 months ago
• grimlockx / ADCSKiller

  View on GitHub
  An ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer
  ☆738May 19, 2023Updated 2 years ago
• blackarrowsec / Handly

  View on GitHub
  Abuse leaked token handles.
  ☆134Dec 14, 2023Updated 2 years ago
• synacktiv / GPOddity

  View on GitHub
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆358Dec 13, 2025Updated 2 months ago
• zblurx / dploot

  View on GitHub
  DPAPI looting remotely and locally in Python
  ☆540Oct 7, 2025Updated 4 months ago
• NetSPI / silkwasm

  View on GitHub
  HTML Smuggling with Web Assembly
  ☆66Feb 20, 2024Updated last year
• skelsec / pysnaffler

  View on GitHub
  pysnaffler
  ☆110Jan 6, 2026Updated last month
• nickzer0 / RagingRotator

  View on GitHub
  A tool for carrying out brute force attacks against Office 365, with built in IP rotation use AWS gateways.
  ☆80Jun 6, 2024Updated last year
• synacktiv / Invoke-RunAsWithCert

  View on GitHub
  A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine.
  ☆171May 13, 2024Updated last year
• 0xEr3bus / PoolPartyBof

  View on GitHub
  A beacon object file implementation of PoolParty Process Injection Technique.
  ☆432Dec 21, 2023Updated 2 years ago
• xpn / RandomTSScripts

  View on GitHub
  Collection of random RedTeam scripts.
  ☆211Mar 8, 2024Updated last year
• FalconForceTeam / SOAPHound

  View on GitHub
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆855Feb 3, 2024Updated 2 years ago
• redr0nin / badgerDAPS

  View on GitHub
  Brute Ratel LDAP filtering and sorting tool. Easily take BR log output and pull hostnames for ease of use with other red team tooling. Su…
  ☆39Nov 16, 2023Updated 2 years ago
• rkbennett / icmpsh

  View on GitHub
  Simple reverse ICMP shell
  ☆14Apr 30, 2024Updated last year
• rkbennett / pybof

  View on GitHub
  Python module for running BOFs
  ☆79Nov 28, 2025Updated 2 months ago
• NoahKirchner / speedloader

  View on GitHub
  Rust template/library for implementing your own COFF loader
  ☆71Jan 27, 2025Updated last year
• CultCornholio / solenya

  View on GitHub
  Microsoft365 Device Code Phishing Framework
  ☆39Sep 4, 2021Updated 4 years ago
• CCob / gssapi-abuse

  View on GitHub
  A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
  ☆182Aug 16, 2025Updated 5 months ago
• zblurx / certsync

  View on GitHub
  Dump NTDS with golden certificates and UnPAC the hash
  ☆646Mar 20, 2024Updated last year
• Helixo32 / NimBlackout

  View on GitHub
  Kill AV/EDR leveraging BYOVD attack
  ☆390Jul 11, 2023Updated 2 years ago
• MzHmO / NtlmThief

  View on GitHub
  Extracting NetNTLM without touching lsass.exe
  ☆242Nov 27, 2023Updated 2 years ago
• xpn / OktaPostExToolkit

  View on GitHub
  ☆190Nov 21, 2024Updated last year
• cisagov / snafflepy

  View on GitHub
  Snaffler reimplementation in Python - https://github.com/SnaffCon/Snaffler
  ☆119Jul 12, 2025Updated 7 months ago
• RedSiege / AutoFunkt

  View on GitHub
  Python script for automating the creation of serverless cloud redirectors from Cobalt Strike malleable C2 profiles
  ☆202Jun 25, 2024Updated last year
• slemire / WSPCoerce

  View on GitHub
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆300Sep 7, 2023Updated 2 years ago
• jfjallid / go-secdump

  View on GitHub
  Tool to remotely dump secrets from the Windows registry
  ☆522Nov 18, 2025Updated 2 months ago
• Slowerzs / ThievingFox

  View on GitHub
  ☆567Mar 28, 2024Updated last year
• SpecterOps / cred1py

  View on GitHub
  A Python POC for CRED1 over SOCKS5
  ☆164Oct 5, 2024Updated last year
• garrettfoster13 / sccmhunter

  View on GitHub
  SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…
  ☆882Feb 5, 2026Updated last week
• Kudaes / Eclipse

  View on GitHub
  Activation Context Hijack
  ☆169Aug 3, 2025Updated 6 months ago
• sokaRepo / CoercedPotatoRDLL

  View on GitHub
  Reflective DLL to privesc from NT Service to SYSTEM using SeImpersonateToken privilege
  ☆224Nov 23, 2023Updated 2 years ago
• mertdas / PrivKit

  View on GitHub
  PrivKit is a simple beacon object file that detects privilege escalation vulnerabilities caused by misconfigurations on Windows OS.
  ☆563Jan 20, 2026Updated 3 weeks ago
• S1lkys / SharpKiller

  View on GitHub
  Lifetime AMSI bypass by @ZeroMemoryEx ported to .NET Framework 4.8
  ☆351Aug 29, 2024Updated last year
• nyxgeek / guestlist

  View on GitHub
  tool for identifying guest relationships between companies
  ☆102Jun 27, 2024Updated last year
• CodeXTF2 / WindowSpy

  View on GitHub
  WindowSpy is a Cobalt Strike Beacon Object File meant for automated and targeted user surveillance.
  ☆281Feb 24, 2025Updated 11 months ago
• Octoberfest7 / DropSpawn_BOF

  View on GitHub
  CobaltStrike BOF to spawn Beacons using DLL Application Directory Hijacking
  ☆285Jun 8, 2023Updated 2 years ago
• lsecqt / ThreadlessInject-C-Implementation

  View on GitHub
  This repository implements Threadless Injection in C
  ☆172Dec 23, 2023Updated 2 years ago
• CICADA8-Research / RemoteKrbRelay

  View on GitHub
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆635May 8, 2025Updated 9 months ago
• LuemmelSec / APEX

  View on GitHub
  Azure Post Exploitation Framework
  ☆244Oct 27, 2025Updated 3 months ago