florylsk/active-directory-hacktools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

florylsk/active-directory-hacktools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/florylsk/active-directory-hacktools)

Close

florylsk / active-directory-hacktoolsView on GitHubMore

• External links
• Readme badge

Small collection of Active Directory pentesting tools.

☆33Jan 29, 2024Updated 2 years ago

Alternatives and similar repositories for active-directory-hacktools

Users that are interested in active-directory-hacktools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• florylsk / NtDump

  View on GitHub
  Indirect NT syscalls LSASS dumper.
  ☆47Jul 9, 2023Updated 2 years ago
• florylsk / AmsiBypass123

  View on GitHub
  ☆13Feb 25, 2023Updated 3 years ago
• oldboy21 / CGPL

  View on GitHub
  Yet, Another Packer/Loader
  ☆25Feb 26, 2023Updated 3 years ago
• DragoQCC / Iron-Injector

  View on GitHub
  Interactive program for loading AES encrypted shellcode with Dynamic Invocation, and interactive .NET assemblies in memory.
  ☆13Mar 16, 2022Updated 4 years ago
• NotoriousRebel / Find-LOLBAS

  View on GitHub
  Simple powershell script to find living off land binaries and scripts on a system.
  ☆22Aug 24, 2019Updated 6 years ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• x0reaxeax / SysCook64

  View on GitHub
  Indirect Syscall invocation via thread hijacking
  ☆26May 5, 2023Updated 3 years ago
• grov / webshell

  View on GitHub
  Differents WebShell usefull for CTF
  ☆12Jul 21, 2017Updated 8 years ago
• myzxcg / BypassUAC-Dll

  View on GitHub
  Use COM Component Bypass UAC,Dll Version
  ☆38Apr 17, 2021Updated 5 years ago
• a7t0fwa7 / Attacker_Infrastructure_Setup

  View on GitHub
  ☆12Apr 5, 2025Updated last year
• badchars / AzureAD-Pentest

  View on GitHub
  AzureAD Pentest
  ☆25Mar 24, 2022Updated 4 years ago
• florylsk / RecycledInjector

  View on GitHub
  Native Syscalls Shellcode Injector
  ☆266Jul 2, 2023Updated 2 years ago
• DragoQCC / ShellcodeEncryption

  View on GitHub
  Used to AES encrypt shellcode, can take password or use built in default should be used with Iron Injector to generate and execute shellc…
  ☆15Mar 18, 2022Updated 4 years ago
• 0xJs / domain_audit

  View on GitHub
  Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.
  ☆177Jul 7, 2025Updated 11 months ago
• x0reaxeax / SyscallHookBypass

  View on GitHub
  NTAPI hook bypass with (semi) legit stack trace
  ☆18May 9, 2023Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• grimm-co / mme

  View on GitHub
  Man-in-the-middle made easy!
  ☆15Mar 25, 2020Updated 6 years ago
• Nariod / ronflex

  View on GitHub
  Attempts to suspend all known AV/EDRs processes on Windows using syscalls and the undocumented NtSuspendProcess API. Made with <3 for pen…
  ☆13May 11, 2023Updated 3 years ago
• dana-at-cp / metasploit-framework

  View on GitHub
  Metasploit Framework
  ☆10Apr 3, 2017Updated 9 years ago
• PortSwigger / xss-cheatsheet

  View on GitHub
  ☆18Apr 9, 2024Updated 2 years ago
• Leo4j / Tools

  View on GitHub
  ☆32Oct 1, 2025Updated 8 months ago
• stvemillertime / Cerebro

  View on GitHub
  Scripts and lists to help generate YARA friendly string mutations
  ☆22Apr 9, 2023Updated 3 years ago
• ProcessusT / EnumSSN

  View on GitHub
  Enumerate SSN (System Service Numbers or Syscall ID) and syscall instruction address in ntdll module by parsing the PEB of the current pr…
  ☆21Jan 28, 2024Updated 2 years ago
• WKL-Sec / GregsBestFriend

  View on GitHub
  GregsBestFriend process injection code created from the White Knight Labs Offensive Development course
  ☆205Jun 23, 2023Updated 2 years ago
• RePRGM / Nimperiments

  View on GitHub
  Various one-off pentesting projects written in Nim. Updates happen on a whim.
  ☆159May 25, 2026Updated 2 weeks ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• xpn / RandomTSScripts

  View on GitHub
  Collection of random RedTeam scripts.
  ☆213Mar 8, 2024Updated 2 years ago
• mis-team / rsockspipe

  View on GitHub
  Tool for pivoting over SMB pipes
  ☆16Jul 20, 2019Updated 6 years ago
• misterch0c / BeaconTelegram

  View on GitHub
  Send message on Telegram when you get a new Cobalt Strike beacon
  ☆21Dec 6, 2019Updated 6 years ago
• alperenugurlu / Nac_Bypass_Agent

  View on GitHub
  This function combines all the above functions and takes necessary information from the user to change the IP and MAC address, start the …
  ☆73May 21, 2023Updated 3 years ago
• fanbyprinciple / oscp

  View on GitHub
  OSCP preparation
  ☆12Sep 18, 2025Updated 8 months ago
• Dec0ne / DavRelayUp

  View on GitHub
  DavRelayUp - a universal no-fix local privilege escalation in domain-joined windows workstations where LDAP signing is not enforced (the …
  ☆573Jun 5, 2023Updated 3 years ago
• Sh3lldon / Vulnerable-WinKern-Drivers

  View on GitHub
  Here you can find some vulnerable Windows Kernel Drivers
  ☆13Feb 21, 2025Updated last year
• jakehildreth / Locksmith2

  View on GitHub
  An AD CS toolkit for AD Admins, Defensive Security Professionals, and Filthy Red Teamers
  ☆62May 16, 2026Updated 3 weeks ago
• 0x00Check / ExploitLeakedHandle

  View on GitHub
  Identify and exploit leaked handles for local privilege escalation.
  ☆112Jun 19, 2023Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• Sh3llyR / yaraScanParser

  View on GitHub
  ☆11Apr 25, 2021Updated 5 years ago
• zblurx / acltoolkit

  View on GitHub
  ACL abuse swiss-knife
  ☆129Feb 3, 2023Updated 3 years ago
• ly4k / Impacket

  View on GitHub
  Modified version of Impacket to use dynamic NTLMv2 Challenge/Response
  ☆20Dec 26, 2022Updated 3 years ago
• mez-0 / InMemoryNET

  View on GitHub
  Exploring in-memory execution of .NET
  ☆140Apr 20, 2022Updated 4 years ago
• zer0condition / mhydeath

  View on GitHub
  Abusing mhyprotect to kill AVs / EDRs / XDRs / Protected Processes.
  ☆410Mar 16, 2026Updated 2 months ago
• SaadAhla / UnhookingPatch

  View on GitHub
  Bypass EDR Hooks by patching NT API stub, and resolving SSNs and syscall instructions at runtime
  ☆311Aug 2, 2023Updated 2 years ago
• RogueValleyInformationSecurity / ntlmv1

  View on GitHub
  ☆12Oct 10, 2024Updated last year