Alternatives and similar repositories for NomadScanner

Users that are interested in NomadScanner are comparing it to the libraries listed below

• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆104Updated this week
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆228Updated 3 months ago
• RedTeamPentesting / keycred
  Generate and Manage KeyCredentialLinks
  ☆160Updated this week
• logangoins / Stifle
  .NET Post-Exploitation Utility for Abusing Explicit Certificate Mappings in ADCS
  ☆147Updated 3 months ago
• adityatelange / evil-winrm-py
  Execute commands interactively on remote Windows machines using the WinRM protocol
  ☆63Updated this week
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆144Updated last month
• sensepost / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆84Updated 3 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆162Updated last month
• DarkSpaceSecurity / DocEx
  APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files
  ☆89Updated 2 months ago
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆170Updated 2 weeks ago
• RedTeamPentesting / adauth
  Active Directory Authentication Library
  ☆73Updated this week
• LuemmelSec / APEX
  Azure Post Exploitation Framework
  ☆199Updated 3 months ago
• rvrsh3ll / Bolthole
  Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.
  ☆180Updated last month
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆260Updated 6 months ago
• wietze / Invoke-ArgFuscator
  Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…
  ☆174Updated last month
• Thunter-HackTeam / EvilentCoerce
  ☆136Updated last month
• xforcered / RemoteMonologue
  Weaponizing DCOM for NTLM Authentication Coercions
  ☆227Updated 2 months ago
• b3rito / peeko
  peeko – Browser-based XSS C2 for stealthy internal network exploration via infected browser.
  ☆192Updated last month
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆147Updated last year
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆200Updated 3 months ago
• dazzyddos / HSC24RedTeamInfra
  Slides and Codes used for the workshop Red Team Infrastructure Automation
  ☆185Updated last year
• login-securite / conpass
  Continuous password spraying tool
  ☆186Updated 3 months ago
• boku7 / StringReaper
  Reaping treasures from strings in remote processes memory
  ☆261Updated 3 months ago
• logangoins / SharpSuccessor
  SharpSuccessor is a .NET Proof of Concept (POC) for fully weaponizing Yuval Gordon’s (@YuG0rd) BadSuccessor attack from Akamai.
  ☆303Updated 2 weeks ago
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆120Updated 3 months ago
• NtDallas / Svartalfheim
  Stage 0
  ☆160Updated 5 months ago
• amjcyber / pwnlook
  An offensive postexploitation tool that will give you complete control over the Outlook desktop application and therefore to the emails c…
  ☆166Updated 7 months ago
• decoder-it / KrbRelay-SMBServer
  ☆219Updated 7 months ago
• itaymigdal / PowerDodder
  Persist like a Dodder
  ☆61Updated 2 weeks ago
• TheManticoreProject / FindGPPPasswords
  A cross-platform tool to find and decrypt Group Policy Preferences passwords from the SYSVOL share using low-privileged domain accounts
  ☆153Updated last month