Alternatives and similar repositories for autoNTDS

Users that are interested in autoNTDS are comparing it to the libraries listed below

• hmaverickadams / DeHashed-API-Tool

  View on GitHub
  A command-line tool to query the DeHashed API. Easily search for various parameters like usernames, emails, hashed passwords, IP addresse…
  ☆260Jul 2, 2025Updated 7 months ago
• xforcered / DayBird

  View on GitHub
  Extension functionality for the NightHawk operator client
  ☆26Oct 31, 2023Updated 2 years ago
• jfmaes / blogposts-talks-and-tidbits

  View on GitHub
  all random stuff that dont warrant a seperate repo
  ☆12Sep 2, 2022Updated 3 years ago
• vysecurity / Nemesis-Download-Watcher

  View on GitHub
  Watches the Downloads folder for any new files and inserts it into Nemesis for analysis.
  ☆15Feb 29, 2024Updated last year
• skelsec / adiskreader-secretsdump

  View on GitHub
  Extract registry and NTDS secrets from local or remote disk images
  ☆45Mar 15, 2025Updated 11 months ago
• mertdas / SharpLateral

  View on GitHub
  Lateral Movement
  ☆125Nov 14, 2023Updated 2 years ago
• WKL-Sec / WMIExec

  View on GitHub
  Set of python scripts which perform different ways of command execution via WMI protocol.
  ☆165Jun 29, 2023Updated 2 years ago
• Leo4j / Invoke-SMBRemoting

  View on GitHub
  Interactive Shell and Command Execution over Named-Pipes (SMB) for Fileless lateral movement
  ☆181May 19, 2025Updated 8 months ago
• JPG0mez / ADCSync

  View on GitHub
  Use ESC1 to perform a makeshift DCSync and dump hashes
  ☆210Nov 2, 2023Updated 2 years ago
• synacktiv / ntdissector

  View on GitHub
  ☆166Jun 20, 2025Updated 7 months ago
• redi-git / SCCM_SLAP

  View on GitHub
  Regex based secret scanner for sccm deployment points sccmcontentlib$ shares. Find secrets automatically and download entire packages for…
  ☆18Aug 13, 2025Updated 6 months ago
• dievus / msLDAPDump

  View on GitHub
  LDAP enumeration tool implemented in Python3
  ☆224May 20, 2025Updated 8 months ago
• synacktiv / GPOddity

  View on GitHub
  The GPOddity project, aiming at automating GPO attack vectors through NTLM relaying (and more).
  ☆358Dec 13, 2025Updated 2 months ago
• UnaPibaGeek / honeypots-detection

  View on GitHub
  Nuclei templates for honeypots detection.
  ☆197Nov 7, 2023Updated 2 years ago
• Faran-17 / EarlyBird-APC-Injection

  View on GitHub
  Demonstration of Early Bird APC Injection - MITRE ID T1055.004
  ☆35Oct 31, 2023Updated 2 years ago
• lleon1435 / Kernel_VADInjector

  View on GitHub
  Windows 10 DLL Injector via Driver utilizing VAD and hiding the loaded driver
  ☆54Oct 19, 2023Updated 2 years ago
• reverseame / modex

  View on GitHub
  Volatility 3 plugins to extract a module as complete as possible
  ☆12Jun 13, 2023Updated 2 years ago
• mfdooom / threadless_loader_rs

  View on GitHub
  Threadless Injection Payload Toolkit
  ☆12Oct 12, 2023Updated 2 years ago
• foxlox / GIUDA

  View on GitHub
  Ask a TGS on behalf of another user without password
  ☆482Mar 30, 2025Updated 10 months ago
• I3IT / Detect.Remote.ShadowSnapshot.Dump

  View on GitHub
  Detect Remote Local Credentials Dumping using a Shadow Snapshot
  ☆32Jan 27, 2025Updated last year
• RedSiege / SharpCollectionTemplate

  View on GitHub
  ☆14Sep 26, 2023Updated 2 years ago
• puzzlepeaches / msprobe

  View on GitHub
  Finding all things on-prem Microsoft for password spraying and enumeration.
  ☆258May 17, 2022Updated 3 years ago
• ADPunisher / OwnershipStealer

  View on GitHub
  ☆27May 1, 2023Updated 2 years ago
• garrettfoster13 / sccmhunter

  View on GitHub
  SCCMHunter is a post-ex tool built to streamline identifying, profiling, and attacking SCCM related assets in an Active Directory domain.…
  ☆886Updated this week
• Dec0ne / ShadowSpray

  View on GitHub
  A tool to spray Shadow Credentials across an entire domain in hopes of abusing long forgotten GenericWrite/GenericAll DACLs over other ob…
  ☆482Oct 14, 2022Updated 3 years ago
• tomwechsler / Active_Directory_Advanced_Threat_Hunting

  View on GitHub
  This repo is about Active Directory Advanced Threat Hunting
  ☆649Feb 17, 2025Updated last year
• CroodSolutions / BypassIT

  View on GitHub
  BypassIT is a framework for covert malware delivery and post-exploitation using AutoIT for red / blue team self assessment.
  ☆45Jul 6, 2025Updated 7 months ago
• hmaverickadams / Windows-WiFi-Extractor

  View on GitHub
  Extract Windows Wi-Fi Passwords to Remote URL
  ☆278Aug 12, 2022Updated 3 years ago
• dievus / Python3-C2-Course-Code-Modules

  View on GitHub
  Modules for my C2 course students to use for their own projects.
  ☆73Jun 13, 2023Updated 2 years ago
• S12cybersecurity / RDPCredentialStealer

  View on GitHub
  RDPCredentialStealer it's a malware that steal credentials provided by users in RDP using API Hooking with Detours in C++
  ☆259Jun 14, 2023Updated 2 years ago
• The-Viper-One / PsMapExec

  View on GitHub
  Dominate Active Directory with PowerShell.
  ☆1,162Nov 28, 2025Updated 2 months ago
• caomingpei / TokenAuditor

  View on GitHub
  [QRS'22] TokenAuditor: Detecting Manipulation Risk in Token Smart Contract by Fuzzing
  ☆16Aug 24, 2023Updated 2 years ago
• Slowerzs / ThievingFox

  View on GitHub
  ☆567Mar 28, 2024Updated last year
• oldboy21 / JayFinder

  View on GitHub
  Find DLLs with RWX section
  ☆79Jul 3, 2023Updated 2 years ago
• SikretaLabs / BlueMap

  View on GitHub
  A Azure Exploitation Toolkit for Red Team & Pentesters
  ☆165May 6, 2023Updated 2 years ago
• AD-Security / AD_Miner

  View on GitHub
  AD Miner is an Active Directory audit tool that leverages cypher queries to crunch data from the #Bloodhound graph database to uncover se…
  ☆1,471Jan 23, 2026Updated 3 weeks ago
• dievus / AWeSomeUserFinder

  View on GitHub
  AWS IAM Username Enumerator and Password Spraying Tool in Python3
  ☆87Dec 7, 2025Updated 2 months ago
• grahamhelton / dredge

  View on GitHub
  Dredging up secrets from the depths of the file system
  ☆132Nov 4, 2024Updated last year
• gemini-security / GithubC2

  View on GitHub
  ☆27Nov 7, 2023Updated 2 years ago