Alternatives and similar repositories for NomadScanner

Users that are interested in NomadScanner are comparing it to the libraries listed below

• TheManticoreProject / Delegations
  A tool to work with all types of Kerberos delegations (unconstrained, constrained, and resource-based constrained delegations) in Active …
  ☆210Updated 4 months ago
• sud0Ru / NauthNRPC
  Enumerate Domain Users Without Authentication
  ☆275Updated 7 months ago
• synacktiv / GroupPolicyBackdoor
  Group Policy Objects manipulation and exploitation framework
  ☆275Updated last month
• SpecterOps / MSSQLHound
  PowerShell collector for adding MSSQL attack paths to BloodHound with OpenGraph
  ☆265Updated last week
• p0dalirius / ShareHound
  A python tool to map the access rights of network shares into a BloodHound OpenGraphs easily
  ☆216Updated this week
• ShutdownRepo / dcshadow
  Python alternative to Mimikatz lsadump::dcshadow
  ☆155Updated 4 months ago
• Print3M / ByteCaster
  Swiss Army Knife for payload encryption, obfuscation, and conversion to byte arrays – all in a single command (14 output formats supporte…
  ☆195Updated 2 months ago
• CICADA8-Research / Penetration
  Our Tips&Tricks
  ☆127Updated 9 months ago
• RedTeamPentesting / keycred
  Generate and Manage KeyCredentialLinks
  ☆177Updated last month
• rvrsh3ll / Bolthole
  Dig your way out of networks like a Meerkat using SSH tunnels via ClickOnce.
  ☆249Updated 6 months ago
• safedv / RustSoliloquy
  A Rust implementation of Internal-Monologue — retrieving NetNTLM hashes without touching LSASS, leveraging SSPI for NTLM negotiation and …
  ☆187Updated 6 months ago
• synacktiv / captaincredz
  CaptainCredz is a modular and discreet password-spraying tool.
  ☆132Updated 4 months ago
• Thunter-HackTeam / EvilentCoerce
  ☆150Updated 6 months ago
• jeanlucdupont / EXEfromCER
  PoC that downloads an executable from a public SSL certificate
  ☆131Updated 3 months ago
• 0xJs / EnumEDRs
  Enumerate active EDR's on the system
  ☆146Updated last month
• Leo4j / Invoke-SMBRemoting
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆179Updated 6 months ago
• hdbreaker / Nimhawk
  A powerful, modular, lightweight and efficient command & control framework written in Nim.
  ☆213Updated 2 weeks ago
• ZephrFish / pyLDAPGui
  Python based GUI for browsing LDAP
  ☆171Updated 2 months ago
• LeighlinRamsay / GunnerC2
  ☆144Updated last month
• DarkSpaceSecurity / DocEx
  APT Emulation tool to exfiltrate sensitive .docx, .pptx, .xlsx, .pdf files
  ☆94Updated 7 months ago
• 0xsch1zo / NullGate
  Library that eases the use of indirect syscalls. Quite interesting AV/EDR bypass as PoC.
  ☆159Updated 3 months ago
• SenSecurity / Founding
  Founding is a generator that will create a loader encrypted or obfuscated with different execution types
  ☆96Updated 2 months ago
• 0xthirteen / Carseat
  Python implementation of GhostPack's Seatbelt situational awareness tool
  ☆266Updated last year
• boku7 / StringReaper
  Reaping treasures from strings in remote processes memory
  ☆279Updated 9 months ago
• Diverto / IPPrintC2
  PoC for using MS Windows printers for persistence / command and control via Internet Printing
  ☆148Updated last year
• sikumy / sauron
  Fast context enumeration for newly obtained Active Directory credentials.
  ☆84Updated 2 months ago
• dazzyddos / HSC24RedTeamInfra
  Slides and Codes used for the workshop Red Team Infrastructure Automation
  ☆196Updated last year
• NeffIsBack / wsuks
  Automating the MITM attack on WSUS
  ☆275Updated 2 weeks ago
• xforcered / SoaPy
  SoaPy is a Proof of Concept (PoC) tool for conducting offensive interaction with Active Directory Web Services (ADWS) from Linux hosts.
  ☆255Updated 9 months ago
• praetorian-inc / oauthseeker
  A malicious OAuth application that can be leveraged for both internal and external phishing attacks targeting Microsoft Azure and Office3…
  ☆150Updated 3 months ago