Alternatives and similar repositories for Invoke-Mimikatz

Users that are interested in Invoke-Mimikatz are comparing it to the libraries listed below

• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆323Updated 2 years ago
• Flangvik / ObfuscatedSharpCollection
  Attempt at Obfuscated version of SharpCollection
  ☆216Updated last week
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆277Updated 3 years ago
• ly4k / PetitPotam
  Python implementation for PetitPotam
  ☆200Updated 3 years ago
• wsummerhill / CobaltStrike_BOF_Collections
  Useful Cobalt Strike BOFs found or used during engagements
  ☆140Updated last year
• Cerbersec / KillDefenderBOF
  Beacon Object File PoC implementation of KillDefender
  ☆227Updated 3 years ago
• decoder-it / ADCSCoercePotato
  ☆226Updated last year
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆83Updated 3 years ago
• n00py / DCSync
  DCSync Attack from Outside using Impacket
  ☆115Updated 3 years ago
• slemire / WSPCoerce
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆239Updated last year
• ScriptIdiot / BOF-patchit
  An all-in-one Cobalt Strike BOF to patch, check and revert AMSI and ETW for x64 process. Both syscalls and dynamic resolve versions are a…
  ☆135Updated 2 years ago
• ShutdownRepo / ShadowCoerce
  MS-FSRVP coercion abuse PoC
  ☆291Updated 3 years ago
• N4kedTurtle / PersistBOF
  A BOF to automate common persistence tasks for red teamers
  ☆277Updated 2 years ago
• Ridter / atexec-pro
  Fileless atexec, no more need for port 445
  ☆384Updated last year
• VoldeSec / PatchlessInlineExecute-Assembly
  Porting of BOF InlineExecute-Assembly to load .NET assembly in process but with patchless AMSI and ETW bypass using hardware breakpoint.
  ☆231Updated 2 years ago
• gh0x0st / OSEP-Breaking-Chains
  A collection of code snippets built to assist with breaking chains.
  ☆117Updated last year
• Ghost53574 / havoc_profile_generator
  Havoc C2 profile generator
  ☆89Updated 7 months ago
• S3cur3Th1sSh1t / SharpNamedPipePTH
  Pass the Hash to a named pipe for token Impersonation
  ☆302Updated last year
• G0ldenGunSec / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆137Updated last year
• zyn3rgy / smbtakeover
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆302Updated 6 months ago
• rootSySdk / PowerGPOAbuse
  Powershell version of SharpGPOAbuse
  ☆78Updated 4 years ago
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆114Updated 3 years ago
• Cobalt-Strike / bof_template
  A Beacon Object File (BOF) is a compiled C program, written to a convention that allows it to execute within a Beacon process and use int…
  ☆189Updated 2 months ago
• Adaptix-Framework / Extension-Kit
  AdaptixFramework Extension Kit
  ☆138Updated this week
• Hagrid29 / DuplicateDump
  Dumping LSASS with a duplicated handle from custom LSA plugin
  ☆201Updated 3 years ago
• cube0x0 / SharpSystemTriggers
  Collection of remote authentication triggers in C#
  ☆488Updated last year
• fortalice / modifyCertTemplate
  ADCS cert template modification and ACL enumeration
  ☆136Updated last year
• Kevin-Robertson / Sharpmad
  C# version of Powermad
  ☆166Updated last year
• VbScrub / Rubeus-GUI
  GUI alternative to the Rubeus command line tool, for all your Kerberos exploit requirements
  ☆182Updated 3 years ago
• CsEnox / EventViewer-UACBypass
  🍊 Orange Tsai EventViewer RCE
  ☆185Updated 3 years ago