Alternatives and similar repositories for shimit

Users that are interested in shimit are comparing it to the libraries listed below

• vysecurity / ANGRYPUPPY
  Bloodhound Attack Path Automation in CobaltStrike
  ☆318Updated 5 years ago
• mdsecresearch / LyncSniper
  LyncSniper: A tool for penetration testing Skype for Business and Lync deployments
  ☆306Updated 4 years ago
• mandiant / PwnAuth
  ☆390Updated last week
• JavelinNetworks / HoneypotBuster
  ☆283Updated 7 years ago
• GoFetchAD / GoFetch
  GoFetch is a tool to automatically exercise an attack plan generated by the BloodHound application.
  ☆635Updated 8 years ago
• HarmJ0y / DAMP
  The Discretionary ACL Modification Project: Persistence Through Host-based Security Descriptor Modification
  ☆380Updated 5 years ago
• fox-it / Invoke-ACLPwn
  ☆523Updated 2 years ago
• ramen0x3f / AggressorScripts
  ☆272Updated 2 years ago
• quickbreach / ExchangeRelayX
  An NTLM relay tool to the EWS endpoint for on-premise exchange servers. Provides an OWA for hackers.
  ☆308Updated 2 years ago
• fullmetalcache / PowerLine
  ☆307Updated 6 years ago
• obscuritylabs / RAI
  Rapid Attack Infrastructure (RAI)
  ☆305Updated 7 months ago
• Raikia / CredNinja
  A multithreaded tool designed to identify if credentials are valid, invalid, or local admin valid credentials within a network at-scale v…
  ☆449Updated 3 years ago
• porterhau5 / BloodHound-Owned
  A collection of files for adding and leveraging custom properties in BloodHound.
  ☆185Updated 5 years ago
• sensepost / UserEnum
  Domain user enumeration tool
  ☆215Updated last year
• ImpostorKeanu / eavesarp
  Analyze ARP requests to identify intercommunicating hosts and stale network address configurations (SNACs)
  ☆67Updated 3 years ago
• trustedsec / egressbuster
  Egressbuster is a method to check egress filtering and identify if ports are allowed. If they are, you can automatically spawn a shell.
  ☆366Updated 10 months ago
• RedSiege / WMIOps
  This repo is for WMIOps, a powershell script which uses WMI for various purposes across a network.
  ☆384Updated last year
• TBGSecurity / splunk_shells
  Weaponizing Splunk with reverse and bind shells.
  ☆182Updated 8 years ago
• nyxgeek / lyncsmash
  locate and attack Lync/Skype for Business
  ☆338Updated 8 months ago
• lorentzenman / sheepl
  Sheepl : Creating realistic user behaviour for supporting tradecraft development within lab environments
  ☆396Updated last year
• Cn33liz / StarFighters
  A JavaScript and VBScript Based Empire Launcher, which runs within their own embedded PowerShell Host.
  ☆320Updated 8 years ago
• mantvydasb / Red-Team-Infrastructure-Automation
  Disposable and resilient red team infrastructure with Terraform
  ☆268Updated 6 years ago
• CroweCybersecurity / ad-ldap-enum
  An LDAP based Active Directory user and group enumeration tool
  ☆308Updated 2 years ago
• Sw4mpf0x / PowerLurk
  Malicious WMI Events using PowerShell
  ☆387Updated 8 years ago
• Tylous / Vibe
  A framework for stealthy domain reconnaissance
  ☆303Updated 3 years ago
• HarmJ0y / ASREPRoast
  Project that retrieves crackable hashes from KRB5 AS-REP responses for users without kerberoast preauthentication enabled.
  ☆204Updated 6 years ago
• guidepointsecurity / RedCommander
  Red Team C2 Infrastructure built in AWS using Ansible!
  ☆229Updated 4 years ago
• cyberark / RiskySPN
  Detect and abuse risky SPNs
  ☆262Updated 8 years ago
• skorov / ridrelay
  Enumerate usernames on a domain where you have no creds by using SMB Relay with low priv.
  ☆395Updated 5 years ago
• NetSPI / goddi
  goddi (go dump domain info) dumps Active Directory domain information
  ☆429Updated 3 years ago