Alternatives and similar repositories for windows-privilege-escalation

Users that are interested in windows-privilege-escalation are comparing it to the libraries listed below

• WaterExecution / vulnerable-AD-plus
  Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
  ☆183Updated 2 years ago
• An0nUD4Y / CRTO-Notes
  Certified Red Team Operator (CRTO) Cheatsheet and Checklist
  ☆208Updated last year
• 0xStarlight / CRTE-Notes
  Study materials for the Certified Red Team Expert (CRTE) exam, covering essential concepts in red teaming and penetration testing.
  ☆165Updated 2 years ago
• seriotonctf / cme-nxc-cheat-sheet
  A cheatsheet for NetExec
  ☆188Updated 8 months ago
• t0thkr1s / gpp-decrypt
  Tool to parse the Group Policy Preferences XML file which extracts the username and decrypts the cpassword attribute.
  ☆172Updated 6 months ago
• IAMinZoho / OFFSEC-PowerShell
  My Favorite Offensive Security Scripts
  ☆83Updated 9 months ago
• anonymous300502 / Nuke-AMSI
  NukeAMSI is a powerful tool designed to neutralize the Antimalware Scan Interface (AMSI) in Windows environments.
  ☆173Updated last month
• gh0x0st / Get-ReverseShell
  A solution to create obfuscated reverse shells for PowerShell.
  ☆83Updated 3 years ago
• wietze / Invoke-ArgFuscator
  Invoke-ArgFuscator is an open-source, cross-platform PowerShell module that helps generate obfuscated command-lines for common system-nat…
  ☆261Updated 9 months ago
• stevenyu113228 / BloodHound-MCP
  ☆159Updated 10 months ago
• arth0sz / Practice-AD-CS-Domain-Escalation
  Introductory guide on the configuration and subsequent exploitation of Active Directory Certificate Services with Certipy. Based on the w…
  ☆140Updated 2 years ago
• ajm4n / adPEAS
  winPEAS, but for Active Directory
  ☆171Updated 10 months ago
• akamai / BadSuccessor
  ☆235Updated 8 months ago
• Pennyw0rth / NetExec-Lab
  Lab used for workshop and CTF
  ☆487Updated last week
• Leo4j / Invoke-ADEnum
  Active Directory Auditing and Enumeration
  ☆515Updated 2 months ago
• restkhz / ShellcodeEncrypt2DLL
  A script to generate AV evaded(static) DLL shellcode loader with AES encryption.
  ☆139Updated 10 months ago
• Friends-Security / ShadowHound
  PowerShell scripts for alternative SharpHound enumeration, including users, groups, computers, and certificates, using the ActiveDirector…
  ☆398Updated 3 weeks ago
• overgrowncarrot1 / Invoke-Everything
  ☆45Updated 2 years ago
• V-i-x-x / AMSI-WRITE-RAID-BYPASS
  "AMSI WRITE RAID" Vulnerability that leads to an effective AMSI BYPASS
  ☆315Updated 4 months ago
• helviojunior / knowsmore
  KnowsMore is a swiss army knife tool for pentesting Microsoft Active Directory (NTLM Hashes, BloodHound, NTDS and DCSync).
  ☆264Updated last month
• LuemmelSec / PwnDoc-Vulns
  ☆176Updated 10 months ago
• adityatelange / evil-winrm-py
  Execute commands interactively on remote Windows machines using the WinRM protocol
  ☆323Updated 2 weeks ago
• kunpen / Havoc-C2
  The Havoc Framework
  ☆63Updated 3 years ago
• wavestone-cdt / powerpxe
  Powershell script to extract information from boot PXE
  ☆156Updated 6 years ago
• CsEnox / SeManageVolumeExploit
  ☆178Updated 2 years ago
• jakobfriedl / precompiled-binaries
  Collection of useful pre-compiled .NET binaries or other executables for penetration testing Windows Active Directory environments
  ☆240Updated 11 months ago
• Anon-Exploiter / sliver-cheatsheet
  Sliver CheatSheet for OSEP
  ☆242Updated 2 months ago
• fashionproof / EnableAllTokenPrivs
  ☆105Updated 6 years ago
• RedTeamOperations / Red-Infra-Craft
  RedInfraCraft automates the deployment of powerful red team infrastructures! It streamlines the setup of C2s, makes it easy to create adv…
  ☆226Updated 10 months ago
• hmaverickadams / autoNTDS
  autoNTDS is an automation script designed to simplify the process of dumping and cracking NTDS hashes using secretsdump.py and hashcat
  ☆110Updated 2 years ago