Alternatives and similar repositories for ProxyLogon:

Users that are interested in ProxyLogon are comparing it to the libraries listed below

• Mr-Un1k0d3r / ADHuntTool
  official repo for the AdHuntTool (part of the old RedTeamCSharpScripts repo)
  ☆230Updated 2 years ago
• optiv / Registry-Recon
  Cobalt Strike Aggressor Script that Performs System/AV/EDR Recon
  ☆323Updated 2 years ago
• 0xthirteen / StayKit
  Cobalt Strike kit for Persistence
  ☆470Updated 5 years ago
• dmaasland / proxyshell-poc
  ☆379Updated 3 years ago
• ly4k / Pachine
  Python implementation for CVE-2021-42278 (Active Directory Privilege Escalation)
  ☆271Updated 3 years ago
• HuskyHacks / ShadowSteal
  Pure Nim implementation for exploiting CVE-2021-36934, the SeriousSAM local privilege escalation
  ☆208Updated 3 years ago
• waldo-irc / CVE-2021-21551
  Exploit to SYSTEM for CVE-2021-21551
  ☆237Updated 3 years ago
• outflanknl / Spray-AD
  A Cobalt Strike tool to audit Active Directory user accounts for weak, well known or easy guessable passwords.
  ☆432Updated 2 years ago
• alt3kx / CVE-2021-21985_PoC
  ☆214Updated 2 years ago
• jfmaes / SharpZipRunner
  Executes position independent shellcode from an encrypted zip
  ☆301Updated 4 years ago
• newsoft / adduser
  Programmatically create an administrative user under Windows
  ☆179Updated 7 years ago
• BC-SECURITY / Invoke-PrintDemon
  This is a PowerShell Empire launcher PoC using PrintDemon and Faxhell.
  ☆200Updated 4 years ago
• S3cur3Th1sSh1t / MultiPotato
  ☆506Updated 3 years ago
• N7WEra / SharpAllTheThings
  The idea is to collect all the C# projects that are Sharp{Word} that can be used in Cobalt Strike as execute assembly command.
  ☆474Updated 2 years ago
• outflanknl / Recon-AD
  Recon-AD, an AD recon tool based on ADSI and reflective DLL’s
  ☆322Updated 5 years ago
• rvrsh3ll / CPLResourceRunner
  Run shellcode from resource
  ☆254Updated 4 years ago
• busterb / msmailprobe
  Office 365 and Exchange Enumeration
  ☆183Updated 5 years ago
• GoSecure / WSuspicious
  WSuspicious - A tool to abuse insecure WSUS connections for privilege escalations
  ☆354Updated 4 years ago
• 3gstudent / pyKerbrute
  Use python to perform Kerberos pre-auth bruteforcing
  ☆193Updated last year
• JamesCooteUK / SharpSphere
  .NET Project for Attacking vCenter
  ☆538Updated 3 years ago
• tothi / rbcd-attack
  Kerberos Resource-Based Constrained Delegation Attack from Outside using Impacket
  ☆523Updated 2 years ago
• zer1t0 / ticket_converter
  A little tool to convert ccache tickets into kirbi (KRB-CRED) and vice versa based on impacket.
  ☆166Updated 2 years ago
• 0xthirteen / SharpMove
  .NET Project for performing Authenticated Remote Execution
  ☆391Updated 2 years ago
• zeronetworks / cornershot
  Amplify network visibility from multiple POV of other hosts
  ☆302Updated 10 months ago
• 0xthirteen / MoveKit
  Cobalt Strike kit for Lateral Movement
  ☆660Updated 5 years ago
• ShutdownRepo / ShadowCoerce
  MS-FSRVP coercion abuse PoC
  ☆284Updated 3 years ago
• securesean / DecryptAutoLogon
  Command line tool to extract/decrypt the password that was stored in the LSA by SysInternals AutoLogon
  ☆213Updated 4 years ago
• rxwx / spoolsystem
  Print Spooler Named Pipe Impersonation for Cobalt Strike
  ☆262Updated 4 years ago
• Ridter / cve-2020-0688
  cve-2020-0688
  ☆323Updated last year
• boku7 / injectAmsiBypass
  Cobalt Strike BOF - Bypass AMSI in a remote process with code injection.
  ☆379Updated last year