Alternatives and similar repositories for OSEP-Breaking-Chains

Users that are interested in OSEP-Breaking-Chains are comparing it to the libraries listed below

• Flangvik / ObfuscatedSharpCollection
  Attempt at Obfuscated version of SharpCollection
  ☆216Updated last month
• SYANiDE- / SuperSharpShooter
  Payload Generation Framework
  ☆91Updated last year
• slemire / WSPCoerce
  PoC to coerce authentication from Windows hosts using MS-WSP
  ☆249Updated last year
• CsEnox / EventViewer-UACBypass
  🍊 Orange Tsai EventViewer RCE
  ☆186Updated 3 years ago
• Hackndo / WebclientServiceScanner
  Python tool to Check running WebClient services on multiple targets based on @leechristensen
  ☆277Updated 3 years ago
• calebstewart / bypass-clm
  PowerShell Constrained Language Mode Bypass
  ☆270Updated 4 years ago
• ShutdownRepo / ShadowCoerce
  MS-FSRVP coercion abuse PoC
  ☆291Updated 3 years ago
• bugch3ck / SharpEfsPotato
  Local privilege escalation from SeImpersonatePrivilege using EfsRpc.
  ☆325Updated 2 years ago
• fortalice / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆342Updated last year
• ThePorgs / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆283Updated 5 months ago
• buyne / OSEP-1
  ☆34Updated 3 years ago
• cinzinga / Evasion-Practice
  A variety of AV evasion techniques written in C# for practice.
  ☆92Updated 4 years ago
• ZephrFish / Bloodhound-CustomQueries
  Custom Queries - Brought Up to BH4.1 syntax
  ☆256Updated 2 months ago
• RalfHacker / Kerbeus-BOF
  BOF for Kerberos abuse (an implementation of some important features of the Rubeus).
  ☆472Updated 2 months ago
• VirtualAlllocEx / Payload-Download-Cradles
  This are different types of download cradles which should be an inspiration to play and create new download cradles to bypass AV/EPP/EDR …
  ☆256Updated 2 years ago
• rootshooter / osep-code-dump-2022
  Code dump from PEN-300/OSEP updated 2022
  ☆41Updated 2 years ago
• garrettfoster13 / aced
  ☆160Updated 7 months ago
• szymex73 / bloodhound-convert
  Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format
  ☆58Updated 2 years ago
• synacktiv / GPOddity
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆310Updated 7 months ago
• Octoberfest7 / OSEP-Tools
  ☆259Updated 3 years ago
• sensepost / susinternals
  psexecsvc - a python implementation of PSExec's native service implementation
  ☆202Updated 4 months ago
• Cobalt-Strike / ElevateKit
  The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
  ☆123Updated 5 years ago
• zyn3rgy / smbtakeover
  BOF and Python3 implementation of technique to unbind 445/tcp on Windows via SCM interactions
  ☆305Updated 7 months ago
• ly4k / PetitPotam
  Python implementation for PetitPotam
  ☆202Updated 3 years ago
• hackinaggie / OSEP-Tools-v2
  A marriage between Octoberfest7/OSEP-Tools and chvancooten/OSEP-Code-Snippets with some improvements/additions
  ☆66Updated 5 months ago
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆116Updated 3 years ago
• SecuraBV / Timeroast
  Timeroasting scripts by Tom Tervoort
  ☆290Updated last year
• Tylous / Freeze
  Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
  ☆116Updated 2 years ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆176Updated 2 years ago
• Yaxxine7 / ASRepCatcher
  Make everyone in your VLAN ASRep roastable
  ☆198Updated 3 months ago