Alternatives and similar repositories for CredGuess:

Users that are interested in CredGuess are comparing it to the libraries listed below

• n0tspam / RunspaceLoader
  Launches a limited shell using PowerShell Runspaces with an optional AMSI Bypass. Does not invoke Powershell.exe
  ☆13Updated last year
• myexploit / living_off_the_land
  ☆44Updated 9 months ago
• smokeme / ansible-havoc
  Scripts I use to deploy Havoc on Linode and setup categorization and SSL
  ☆40Updated 10 months ago
• Leo4j / PowerDACL
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆56Updated 4 months ago
• Yeeb1 / SharpLansweeperDecrypt
  Automatically extract and decrypt all configured scanning credentials of a Lansweeper instance.
  ☆37Updated 4 months ago
• synacktiv / kcmdump
  Dump Kerberos tickets from the KCM database of SSSD
  ☆50Updated 7 months ago
• Workingdaturah / BOF-Learning
  Cobalt Strike BOFS
  ☆15Updated last year
• 4ndr34z / prenum
  ☆27Updated last year
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated 10 months ago
• dmcxblue / AzureFunctionRedirector
  ☆41Updated 2 weeks ago
• jfjallid / go-lsass
  Tool to aid in dumping LSASS process remotely
  ☆38Updated 8 months ago
• Helixo32 / GetSystem-LCI
  GetSystem-LCI is a PowerShell script to escalate privileges from Administrator to NT AUTHORITY\SYSTEM by abusing LanguageComponentsInstal…
  ☆34Updated 4 months ago
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• Leo4j / Invoke-ShareHunter
  Enumerate the Domain for Readable and Writable Shares
  ☆17Updated 2 months ago
• yehia-mamdouh / Lsassx
  Dumping LSASS Evaded Endpoint Security Solutions
  ☆12Updated 2 months ago
• huntandhackett / PassiveAggression
  Source code and examples for PassiveAggression
  ☆54Updated 10 months ago
• JonasBK / Powershell
  ☆36Updated 2 months ago
• OffsecDeer / TargetedTimeroast
  Tamper Active Directory user attributes to collect their hashes with MS-SNTP
  ☆25Updated 3 months ago
• GeorgePatsias / AskCreds-CS
  A BOF tool that can be used to collect passwords using CredUIPromptForWindowsCredentialsName.
  ☆14Updated 2 years ago
• OtterHacker / AWSRedirector
  ☆54Updated 2 months ago
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆37Updated 7 months ago
• yehia-mamdouh / Shell3er
  PowerShell Reverse Shell
  ☆61Updated last year
• Acceis / bqm
  Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.
  ☆37Updated last year
• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆40Updated last month
• heartburn-dev / PKI-Escalate
  Quick and dirty PowerShell script to abuse the overly permissive capabilities of the SYSTEM user in a child domain on the Public Key Serv…
  ☆25Updated last year
• nickvourd / Responder-Parser
  Most Responder's configuration power in your hand.
  ☆47Updated 3 months ago
• 0xEr3bus / ShadowForgeC2
  ShadowForge Command & Control - Harnessing the power of Zoom's API, control a compromised Windows Machine from your Zoom Chats.
  ☆47Updated last year
• overgrowncarrot1 / SMB_Killer
  Used to get NTLMv2 Hashes from SMB
  ☆12Updated 5 months ago
• nyxgeek / autodiscover_enum
  time-based user enum via Basic Auth in Azure against Autodiscover
  ☆32Updated 6 months ago
• WafflesExploits / Bloodhound-query-legacy2ce
  A Python based tool to convert custom queries from Legacy BloodHound to BloodHound CE format, with the option to directly upload them to …
  ☆25Updated 3 months ago