Alternatives and similar repositories for pxethiefy

Users that are interested in pxethiefy are comparing it to the libraries listed below

• MWR-CyberSec / PXEThief

  View on GitHub
  PXEThief is a set of tooling that can extract passwords from the Operating System Deployment functionality in Microsoft Endpoint Configur…
  ☆410May 29, 2024Updated last year
• shelltrail / cmloot

  View on GitHub
  ☆79Sep 8, 2025Updated 5 months ago
• xpn / adfstoolkit

  View on GitHub
  ☆37Jan 7, 2025Updated last year
• SpecterOps / cred1py

  View on GitHub
  A Python POC for CRED1 over SOCKS5
  ☆164Oct 5, 2024Updated last year
• garrettfoster13 / sccmhunter

  View on GitHub
  SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…
  ☆882Feb 5, 2026Updated last week
• Mayyhem / SharpSCCM

  View on GitHub
  A C# utility for interacting with SCCM
  ☆682Aug 20, 2025Updated 5 months ago
• zyn3rgy / smbtakeover

  View on GitHub
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆345Nov 19, 2024Updated last year
• EspressoCake / ADIDNS_Parser

  View on GitHub
  Parser and reconciliation tooling for large Active Directory environments.
  ☆33Feb 18, 2025Updated 11 months ago
• KingOfTheNOPs / EnableWebDAVClient-BOF

  View on GitHub
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆23Sep 15, 2023Updated 2 years ago
• netero1010 / SCCMVNC

  View on GitHub
  A tool to modify SCCM remote control settings on the client machine, enabling remote control without permission prompts or notifications.…
  ☆115Oct 20, 2024Updated last year
• S3cur3Th1sSh1t / nim-strenc

  View on GitHub
  string encryption in Nim
  ☆20Jun 15, 2024Updated last year
• subat0mik / Misconfiguration-Manager

  View on GitHub
  Misconfiguration Manager is a central knowledge base for all known Microsoft Configuration Manager tradecraft and associated defensive an…
  ☆1,086Feb 4, 2026Updated last week
• mandiant / ccmpwn

  View on GitHub
  ☆216Mar 26, 2024Updated last year
• zimnyaa / smbsocks

  View on GitHub
  A simple rpc2socks alternative in pure Go.
  ☆31Jul 8, 2024Updated last year
• synacktiv / Prox-Ez

  View on GitHub
  ☆104Jan 20, 2026Updated 3 weeks ago
• xpn / sccmwtf

  View on GitHub
  ☆159Feb 8, 2025Updated last year
• garrettfoster13 / pre2k

  View on GitHub
  A tool to query for the existence of pre-windows 2000 computer objects.
  ☆366Dec 23, 2025Updated last month
• CCob / DRSAT

  View on GitHub
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆273Dec 27, 2024Updated last year
• NoahKirchner / speedloader

  View on GitHub
  Rust template/library for implementing your own COFF loader
  ☆71Jan 27, 2025Updated last year
• decoder-it / ADCSCoercePotato

  View on GitHub
  ☆241May 5, 2024Updated last year
• CICADA8-Research / RemoteKrbRelay

  View on GitHub
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆635May 8, 2025Updated 9 months ago
• RiccardoAncarani / BOFs

  View on GitHub
  Collection of Beacon Object Files (BOFs) for shells and lols
  ☆121Sep 14, 2021Updated 4 years ago
• FalconForceTeam / SOAPHound

  View on GitHub
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆855Feb 3, 2024Updated 2 years ago
• MaLDAPtive / Invoke-Maldaptive

  View on GitHub
  MaLDAPtive is a framework for LDAP SearchFilter parsing, obfuscation, deobfuscation and detection.
  ☆336Aug 7, 2024Updated last year
• badsectorlabs / sccm-http-looter

  View on GitHub
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) shares via HTTP(s)
  ☆206Sep 30, 2024Updated last year
• slygoo / pssrecon

  View on GitHub
  ☆40Oct 8, 2024Updated last year
• xforcered / SoaPy

  View on GitHub
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆260Feb 21, 2025Updated 11 months ago
• trustedsec / DitExplorer

  View on GitHub
  Tool for viewing NTDS.dit
  ☆191Mar 14, 2025Updated 11 months ago
• GhostManager / cobalt_sync

  View on GitHub
  Standalone Cobalt Strike operation logging Aggressor script for Ghostwriter 2.0+
  ☆36Dec 1, 2025Updated 2 months ago
• hotnops / SharpGetEntraToken

  View on GitHub
  A dotnet executable to get an Entra token in an authenticated runtime
  ☆15Oct 30, 2024Updated last year
• AlmondOffSec / PassTheCert

  View on GitHub
  Proof-of-Concept tool to authenticate to an LDAP/S server with a certificate through Schannel
  ☆724Sep 3, 2025Updated 5 months ago
• zblurx / dploot

  View on GitHub
  DPAPI looting remotely and locally in Python
  ☆540Oct 7, 2025Updated 4 months ago
• Hackndo / WebclientServiceScanner

  View on GitHub
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆285Aug 18, 2021Updated 4 years ago
• ToweringDragoon / SACL_Scanner

  View on GitHub
  SACL Scanner is a tool designed to scan and analyze SACLs.
  ☆50Feb 13, 2025Updated last year
• mwnickerson / bloodhound_mcp

  View on GitHub
  A Model Context Protocol (MCP) server to converse with data in Bloodhound
  ☆54Jan 17, 2026Updated 3 weeks ago
• Synzack / ludus_sccm

  View on GitHub
  An Ansible collection that installs an SCCM deployment with optional configurations.
  ☆101Dec 8, 2025Updated 2 months ago
• franc-pentest / ldeep

  View on GitHub
  In-depth ldap enumeration utility
  ☆555Updated this week
• c3c / ADExplorerSnapshot

  View on GitHub
  ADExplorerSnapshot.py is an AD Explorer snapshot parser. It is made as an ingestor for BloodHound via BOFHound, and also supports full-ob…
  ☆1,048Jan 22, 2026Updated 3 weeks ago
• Mr-Un1k0d3r / MsGraphFunzy

  View on GitHub
  Scripts to interact with Microsoft Graph APIs
  ☆44Nov 7, 2024Updated last year