Alternatives and similar repositories for bypass-clm

Users that are interested in bypass-clm are comparing it to the libraries listed below

• padovah4ck / PSByPassCLM

  View on GitHub
  Bypass for PowerShell Constrained Language Mode
  ☆403Dec 23, 2021Updated 4 years ago
• S3cur3Th1sSh1t / PowerSharpPack

  View on GitHub
  ☆1,665Apr 14, 2025Updated 10 months ago
• chvancooten / OSEP-Code-Snippets

  View on GitHub
  A repository with my notable code snippets for Offensive Security's PEN-300 (OSEP) course.
  ☆1,407Jul 27, 2025Updated 6 months ago
• Inf0secRabbit / BadAssMacros

  View on GitHub
  BadAssMacros - C# based automated Malicous Macro Generator.
  ☆439Jan 8, 2022Updated 4 years ago
• tothi / rbcd-attack

  View on GitHub
  Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
  ☆610Aug 15, 2025Updated 6 months ago
• Mr-Un1k0d3r / SCShell

  View on GitHub
  Fileless lateral movement tool that relies on ChangeServiceConfigA to run command
  ☆1,594Jul 10, 2023Updated 2 years ago
• leechristensen / SpoolSample

  View on GitHub
  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…
  ☆1,086May 29, 2024Updated last year
• RedCursorSecurityConsulting / PPLKiller

  View on GitHub
  Tool to bypass LSA Protection (aka Protected Process Light)
  ☆986Dec 4, 2022Updated 3 years ago
• eladshamir / Whisker

  View on GitHub
  Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, …
  ☆930Nov 11, 2024Updated last year
• RythmStick / AMSITrigger

  View on GitHub
  The Hunt for Malicious Strings
  ☆1,358May 13, 2025Updated 9 months ago
• FuzzySecurity / StandIn

  View on GitHub
  StandIn is a small .NET35/45 AD post-exploitation toolkit
  ☆830Dec 2, 2023Updated 2 years ago
• Flangvik / SharpCollection

  View on GitHub
  Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure …
  ☆2,765Nov 15, 2025Updated 3 months ago
• NetSPI / ESC

  View on GitHub
  Evil SQL Client (ESC) is an interactive .NET SQL console client with enhanced SQL Server discovery, access, and data exfiltration feature…
  ☆301Apr 25, 2023Updated 2 years ago
• Flangvik / NetLoader

  View on GitHub
  Loads any C# binary in mem, patching AMSI + ETW.
  ☆838Oct 3, 2021Updated 4 years ago
• dirkjanm / krbrelayx

  View on GitHub
  Kerberos relaying and unconstrained delegation abuse toolkit
  ☆1,526Jan 27, 2025Updated last year
• FSecureLABS / SharpGPOAbuse

  View on GitHub
  SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GP…
  ☆1,297Dec 15, 2020Updated 5 years ago
• mgeeky / Stracciatella

  View on GitHub
  OpSec-safe Powershell runspace from within C# (aka SharpPick) with AMSI, Constrained Language Mode and Script Block Logging disabled at s…
  ☆538Sep 18, 2022Updated 3 years ago
• mdsecactivebreach / SharpShooter

  View on GitHub
  Payload Generation Framework
  ☆1,956Aug 21, 2024Updated last year
• skahwah / SQLRecon

  View on GitHub
  A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.
  ☆777Oct 16, 2025Updated 3 months ago
• mdsecactivebreach / Farmer

  View on GitHub
  ☆415Apr 28, 2021Updated 4 years ago
• Kevin-Robertson / Powermad

  View on GitHub
  PowerShell MachineAccountQuota and DNS exploit tools
  ☆1,428Jan 11, 2023Updated 3 years ago
• zcgonvh / EfsPotato

  View on GitHub
  Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).
  ☆817Dec 14, 2023Updated 2 years ago
• antonioCoco / RoguePotato

  View on GitHub
  Another Windows Local Privilege Escalation from Service Account to System
  ☆1,148Jan 9, 2021Updated 5 years ago
• rasta-mouse / ThreatCheck

  View on GitHub
  Identifies the bytes that Microsoft Defender / AMSI Consumer flags on.
  ☆1,404Jan 14, 2026Updated last month
• itm4n / FullPowers

  View on GitHub
  Recover the default privilege set of a LOCAL/NETWORK SERVICE account
  ☆672May 3, 2020Updated 5 years ago
• mpgn / BackupOperatorToDA

  View on GitHub
  From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
  ☆439Jan 4, 2025Updated last year
• rasta-mouse / ExternalC2.NET

  View on GitHub
  .NET implementation of Cobalt Strike's External C2 Spec
  ☆89Nov 12, 2021Updated 4 years ago
• tomcarver16 / ADSearch

  View on GitHub
  A tool to help query AD via the LDAP protocol
  ☆606Sep 25, 2024Updated last year
• Dec0ne / KrbRelayUp

  View on GitHub
  KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…
  ☆1,628Aug 6, 2022Updated 3 years ago
• antonioCoco / RunasCs

  View on GitHub
  RunasCs - Csharp and open version of windows builtin runas.exe
  ☆1,338Jul 12, 2024Updated last year
• CompassSecurity / BloodHoundQueries

  View on GitHub
  ☆753Feb 3, 2026Updated last week
• wavestone-cdt / EDRSandblast

  View on GitHub
  ☆1,781Aug 30, 2024Updated last year
• leoloobeek / LAPSToolkit

  View on GitHub
  Tool to audit and attack LAPS environments
  ☆925Jan 31, 2018Updated 8 years ago
• deepinstinct / Lsass-Shtinkering

  View on GitHub
  ☆385Jan 19, 2023Updated 3 years ago
• tevora-threat / SharpView

  View on GitHub
  C# implementation of harmj0y's PowerView
  ☆1,083Mar 22, 2024Updated last year
• 61106960 / adPEAS

  View on GitHub
  Powershell tool to automate Active Directory enumeration.
  ☆1,279Sep 9, 2025Updated 5 months ago
• trickster0 / TartarusGate

  View on GitHub
  TartarusGate, Bypassing EDRs
  ☆651Jan 25, 2022Updated 4 years ago
• cube0x0 / KrbRelay

  View on GitHub
  Framework for Kerberos relaying
  ☆939May 29, 2022Updated 3 years ago
• antonioCoco / RogueWinRM

  View on GitHub
  Windows Local Privilege Escalation from Service Account to System
  ☆914Feb 23, 2020Updated 5 years ago