Domain Password Audit Tool for Pentesters
☆1,027Dec 24, 2025Updated 2 months ago
Alternatives and similar repositories for DPAT
Users that are interested in DPAT are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, i…☆3,218Aug 7, 2025Updated 7 months ago
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆2,030Jul 11, 2024Updated last year
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆2,924Nov 19, 2025Updated 4 months ago
- SessionGopher is a PowerShell tool that uses WMI to extract saved session information for remote access tools such as WinSCP, PuTTY, Supe…☆1,314Nov 22, 2022Updated 3 years ago
- ADRecon is a tool which gathers information about the Active Directory and generates a report which can provide a holistic picture of the…☆1,892Jun 15, 2020Updated 5 years ago
- Active Directory Integrated DNS dumping by any authenticated user☆1,146Apr 4, 2025Updated 11 months ago
- SMB MiTM tool with a focus on attacking clients through file content swapping, lnk swapping, as well as compromising any data passed over…☆383Aug 17, 2018Updated 7 years ago
- PowerShell Pass The Hash Utils☆1,732Dec 9, 2018Updated 7 years ago
- Credential and Red Teaming Defense for Windows Environments☆330Jul 17, 2024Updated last year
- a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )☆2,756Feb 27, 2026Updated 3 weeks ago
- Find vulnerabilities in AD Group Policy☆641Mar 25, 2022Updated 3 years ago
- NTLMv1 Multitool☆661Mar 12, 2026Updated last week
- .NET IPv4/IPv6 machine-in-the-middle tool for penetration testers☆809Aug 28, 2022Updated 3 years ago
- Active Directory information dumper via LDAP☆1,388Apr 6, 2025Updated 11 months ago
- Exchange privilege escalations to Active Directory☆810Apr 23, 2023Updated 2 years ago
- Tool to audit and attack LAPS environments☆930Jan 31, 2018Updated 8 years ago
- A Python based ingestor for BloodHound☆2,359Oct 24, 2025Updated 4 months ago
- RedSnarf is a pen-testing / red-teaming tool for Windows environments☆1,213Sep 14, 2020Updated 5 years ago
- Bloodhound Reporting for Blue and Purple Teams☆1,281Nov 15, 2025Updated 4 months ago
- A tool to abuse Exchange services☆2,302Jun 10, 2024Updated last year
- Internal Monologue Attack: Retrieving NTLM Hashes without Touching LSASS☆1,649Oct 11, 2018Updated 7 years ago
- Extract credentials from lsass remotely☆2,184Dec 24, 2025Updated 2 months ago
- The project is called Great SCT (Great Scott). Great SCT is an open source project to generate application white list bypasses. This tool…☆1,125Feb 10, 2021Updated 5 years ago
- Wiki to collect Red Team infrastructure hardening resources☆4,463Oct 1, 2025Updated 5 months ago
- Active Directory ACL exploitation with BloodHound☆756Nov 18, 2021Updated 4 years ago
- Scripts to make password spraying attacks against Lync/S4B, OWA & O365 a lot quicker, less painful and more efficient☆1,557Oct 17, 2022Updated 3 years ago
- This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, …☆2,441Mar 2, 2026Updated 2 weeks ago
- Active Directory Assessment and Privilege Escalation Script☆1,128Dec 7, 2022Updated 3 years ago
- Password spraying using AWS Lambda for IP rotation☆656Feb 14, 2023Updated 3 years ago
- Six Degrees of Domain Admin☆10,558Mar 2, 2026Updated 2 weeks ago
- SharpGPOAbuse is a .NET application written in C# that can be used to take advantage of a user's edit rights on a Group Policy Object (GP…☆1,313Dec 15, 2020Updated 5 years ago
- PowerShell Runspace Post Exploitation Toolkit☆1,548Aug 2, 2019Updated 6 years ago
- Windows Event Log Killer☆1,813Sep 21, 2023Updated 2 years ago
- Run PowerShell command without invoking powershell.exe☆1,536Mar 23, 2023Updated 3 years ago
- Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.☆399May 20, 2020Updated 5 years ago
- Whisker is a C# tool for taking over Active Directory user and computer accounts by manipulating their msDS-KeyCredentialLink attribute, …☆935Nov 11, 2024Updated last year
- Python script to enumerate users, groups and computers from a Windows domain through LDAP queries☆953Apr 20, 2022Updated 3 years ago
- PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server☆2,696Dec 12, 2024Updated last year
- The goal of this repository is to document the most common techniques to bypass AppLocker.☆2,055Sep 11, 2023Updated 2 years ago