An introduction to Active Directory security
☆651Aug 22, 2022Updated 3 years ago
Alternatives and similar repositories for adsec
Users that are interested in adsec are comparing it to the libraries listed below
Sorting:
- official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)☆232Jun 10, 2022Updated 3 years ago
- A tool to escalate privileges in an active directory network by coercing authenticate from machine accounts and relaying to the certifica…☆864Mar 20, 2023Updated 2 years ago
- Self-developed tools for Lateral Movement/Code Execution☆718Aug 17, 2021Updated 4 years ago
- Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab☆2,257Apr 12, 2024Updated last year
- ScareCrow - Payload creation framework designed around EDR bypass.☆2,874Aug 18, 2023Updated 2 years ago
- ☆667Nov 17, 2021Updated 4 years ago
- OfensivePipeline allows you to download and build C# tools, applying certain modifications in order to improve their evasion for Red Team…☆820Oct 27, 2023Updated 2 years ago
- PowerShell toolkit for AD CS auditing based on the PSPKI toolkit.☆915Feb 28, 2024Updated 2 years ago
- .NET Project for Attacking vCenter☆553Nov 11, 2021Updated 4 years ago
- Azure Security Resources and Notes☆1,711Feb 17, 2026Updated last week
- Automation for internal Windows Penetrationtest / AD-Security☆3,644Aug 28, 2025Updated 6 months ago
- NTLM relaying for Windows made easy☆580Apr 25, 2023Updated 2 years ago
- Windows Privilege Escalation from User to Domain Admin.☆1,439Dec 18, 2022Updated 3 years ago
- A PowerShell armoury for security guys and girls☆468Jan 23, 2024Updated 2 years ago
- A lightweight tool to quickly extract valuable information from the Active Directory environment for both attacking and defending.☆634Oct 18, 2025Updated 4 months ago
- Get file less command execution for lateral movement.☆636Jun 3, 2022Updated 3 years ago
- A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.☆6,498Jan 18, 2026Updated last month
- Attack and defend active directory using modern post exploitation adversary tradecraft activity☆4,799Jul 29, 2025Updated 7 months ago
- A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)☆193Jul 7, 2021Updated 4 years ago
- Attack Graph Visualizer and Explorer (Active Directory) ...Who's *really* Domain Admin?☆2,139Feb 21, 2026Updated last week
- Detect and respond to Cobalt Strike beacons using ETW.☆517Jul 15, 2022Updated 3 years ago
- Active Directory certificate abuse.☆1,921Oct 27, 2025Updated 4 months ago
- Cobalt Strike C2 Reverse proxy that fends off Blue Teams, AVs, EDRs, scanners through packet inspection and malleable profile correlation☆992Oct 7, 2022Updated 3 years ago
- This publication is a collection of various common attack scenarios on Microsoft Entra ID (formerly known as Azure Active Directory) and …☆2,475Dec 31, 2025Updated 2 months ago
- Extract credentials from lsass remotely☆2,178Dec 24, 2025Updated 2 months ago
- ☆540Nov 20, 2021Updated 4 years ago
- BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of…☆2,224Jun 7, 2023Updated 2 years ago
- Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.☆483Jul 9, 2024Updated last year
- BloodyAD is an Active Directory Privilege Escalation Framework☆2,098Updated this week
- Defences against Cobalt Strike☆1,296Jul 14, 2022Updated 3 years ago
- Collection of tools that reflect the network dimension into Bloodhound's data☆446Oct 19, 2022Updated 3 years ago
- A User Impersonation tool - via Token or Shellcode injection☆421May 21, 2022Updated 3 years ago
- Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019☆1,812Sep 4, 2024Updated last year
- Hunts out CobaltStrike beacons and logs operator command output☆951Sep 4, 2024Updated last year
- The swiss army knife of LSASS dumping☆2,072Sep 17, 2024Updated last year
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆1,163Mar 31, 2021Updated 4 years ago
- The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.☆479May 24, 2022Updated 3 years ago
- Red Team C code repo☆568Dec 16, 2024Updated last year
- Enumerate Domain Data☆336Sep 13, 2023Updated 2 years ago