Alternatives and similar repositories for Crackmapexec-custom-modules

Users that are interested in Crackmapexec-custom-modules are comparing it to the libraries listed below

• 0x4xel / Bat-Potato
  Automating Juicy Potato Local Privilege Escalation CMD exploit for penetration testers.
  ☆45Updated 2 years ago
• ksecurity45 / ADCheatgen
  ☆15Updated 3 years ago
• dadevel / mssql-spider
  Automated exploitation of MSSQL servers at scale
  ☆108Updated last week
• matro7sh / matro7sh_loaders
  this script adds the ability to encode shellcode (.bin) in XOR,chacha20, AES. You can choose between 2 loaders (Myph / 221b)
  ☆82Updated last year
• MinoTauro2020 / RedTeam-CRTL-Certification
  ☆16Updated 5 months ago
• seriotonctf / AD-Tools
  List of some AD tools I frequently use
  ☆46Updated 4 months ago
• yuyudhn / AzSubEnum
  Azure Service Subdomain Enumeration
  ☆60Updated 9 months ago
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆50Updated 2 years ago
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• mxngel / GoAmsiKiller
  ☆14Updated last year
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆177Updated 2 years ago
• surya-dev-singh / AmsiBypass-OpenSession
  This code bypass AMSI by setting JE instruction to JNE in assembly of amsi.dll file
  ☆36Updated 2 years ago
• ad0nis / ntlm_relay_gat
  ☆158Updated last year
• w0Tx / generate-ad-username
  Simple python which takes FirstName and LastName to generate possible AD Usernames. Usefull for OSCP, Labs...
  ☆22Updated 4 months ago
• x4sh3s / AMSI_Lines
  Bypass AMSI By Dividing files into multiple smaller files
  ☆45Updated 2 years ago
• mertdas / SharpLateral
  Lateral Movement
  ☆125Updated last year
• overgrowncarrot1 / SMB_Killer
  Used to get NTLMv2 Hashes from SMB
  ☆13Updated 7 months ago
• Peco602 / cobaltstrike-aggressor-scripts
  A collection of Cobalt Strike Aggressor scripts.
  ☆96Updated 3 years ago
• HernanRodriguez1 / Bypass-AMSI
  ☆47Updated 3 years ago
• p4p1 / havoc-bloodhound
  A GUI wrapper inside of Havoc to interact with bloodhound CE
  ☆71Updated last year
• danti1988 / adcshunter
  Uses rpcdump to locate the ADCS server, and identify if ESC8 is vulnerable from unauthenticated perspective.
  ☆80Updated 8 months ago
• 4ndr34z / ntlmthief
  ☆51Updated last year
• ferreiraklet / wolfy
  Wolfy AV Bypasser
  ☆28Updated 2 years ago
• optionalCTF / SSOh-No
  User enumeration and password spraying tool for testing Azure AD
  ☆69Updated 3 years ago
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆111Updated 2 years ago
• k4sth4 / Juicy-Potato
  Windows Privilege Escalation
  ☆62Updated 2 years ago
• synacktiv / CVE-2024-43468
  ☆85Updated 4 months ago
• HernanRodriguez1 / MimikatzFUD
  ☆99Updated 3 years ago
• kymb0 / Stealth_shellcode_runners
  ☆56Updated last year
• LudovicPatho / CVE-2022-26923_AD-Certificate-Services
  The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …
  ☆44Updated 3 years ago