Alternatives and similar repositories for PoshADCS

Users that are interested in PoshADCS are comparing it to the libraries listed below

• awsmhacks / awsmBloodhoundCustomQueries
  Collection of cyphers for bloodhound
  ☆151Updated last year
• Flangvik / AzureC2Relay
  AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Co…
  ☆228Updated 4 years ago
• samratashok / RACE
  RACE is a PowerShell module for executing ACL attacks against Windows targets.
  ☆231Updated 2 years ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆168Updated 3 years ago
• xforcered / StandIn
  StandIn is a small .NET35/45 AD post-exploitation toolkit
  ☆258Updated 3 years ago
• fox-it / bloodhound-import
  Python based BloodHound data importer
  ☆147Updated 2 years ago
• mdsecactivebreach / Farmer
  ☆398Updated 4 years ago
• rvrsh3ll / Rubeus-Rundll32
  Run Rubeus via Rundll32
  ☆200Updated 5 years ago
• bohops / WSMan-WinRM
  A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object
  ☆242Updated 5 years ago
• ZeroDayLab / PowerSploit
  PowerSploit - A PowerShell Post-Exploitation Framework
  ☆237Updated 3 years ago
• NetSPI / DAFT
  DAFT: Database Audit Framework & Toolkit
  ☆180Updated 4 years ago
• RedSiege / hot-manchego
  Macro-Enabled Excel File Generator (.xlsm) using the EPPlus Library.
  ☆147Updated 5 years ago
• mandiant / ADFSDump
  ☆362Updated 2 years ago
• rvazarkar / GMSAPasswordReader
  ☆234Updated 2 years ago
• SpecterOps / presentations
  SpecterOps Presentations
  ☆208Updated 2 months ago
• improsec / ImproHound
  Identify the attack paths in BloodHound breaking your AD tiering
  ☆323Updated 2 years ago
• mandiant / ADFSpoof
  ☆405Updated 3 months ago
• RedSiege / EDD
  Enumerate Domain Data
  ☆332Updated 2 years ago
• SecurityRiskAdvisors / msspray
  Password attacks and MFA validation against various endpoints in Azure and Office 365
  ☆153Updated 2 years ago
• BC-SECURITY / Invoke-ZeroLogon
  Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls…
  ☆219Updated 4 years ago
• SadProcessor / HandsOnBloodHound
  Material for the "Hands-On BloodHound" Workshop
  ☆110Updated 4 years ago
• xforcered / CredBandit
  Proof of concept Beacon Object File (BOF) that uses static x64 syscalls to perform a complete in memory dump of a process and send that b…
  ☆244Updated 4 years ago
• GhostPack / RestrictedAdmin
  Remotely enables Restricted Admin Mode
  ☆213Updated 4 years ago
• bohops / GhostBuild
  GhostBuild is a collection of simple MSBuild launchers for various GhostPack/.NET projects
  ☆249Updated 4 years ago
• JohnWoodman / remoteInjector
  Inject remote template link into word document for remote template injection
  ☆179Updated 4 years ago
• outflanknl / Recon-AD
  Recon-AD, an AD recon tool based on ADSI and reflective DLL’s
  ☆332Updated 5 years ago
• Allevon412 / TeamsImplant
  ☆209Updated 3 years ago
• djhohnstein / SharpShares
  Enumerate all network shares in the current domain. Also, can resolve names to IP addresses.
  ☆299Updated 5 years ago
• 3xpl01tc0d3r / Callidus
  ☆164Updated 2 years ago
• xpn / sccmwtf
  ☆155Updated 7 months ago