huntandhackett/PassiveAggression external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

huntandhackett/PassiveAggression

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/huntandhackett/PassiveAggression)

Close

huntandhackett / PassiveAggressionView on GitHubMore

• External links
• Readme badge

Source code and examples for PassiveAggression

☆64Jun 6, 2024Updated last year

Alternatives and similar repositories for PassiveAggression

Users that are interested in PassiveAggression are comparing it to the libraries listed below

• sensepost / dresscode

  View on GitHub
  Scan websites CSP policies and visualise their vunlnerabilities from a dashboard
  ☆13Mar 11, 2025Updated last year
• 0xsp-SRD / MDE_Enum

  View on GitHub
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆211Jun 10, 2024Updated last year
• mlcsec / Graphpython

  View on GitHub
  Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
  ☆166Dec 7, 2024Updated last year
• CCob / gssapi-abuse

  View on GitHub
  A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
  ☆181Aug 16, 2025Updated 7 months ago
• cybersectroll / TrollUAC

  View on GitHub
  ☆143May 22, 2024Updated last year
• iomoath / FileWatchTower

  View on GitHub
  FWT is a security analysis and file monitoring tool that utilizes Sysmon events.
  ☆28Jul 15, 2024Updated last year
• CICADA8-Research / RemoteKrbRelay

  View on GitHub
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆640May 8, 2025Updated 10 months ago
• decoder-it / KrbRelay-SMBServer

  View on GitHub
  ☆234Oct 8, 2024Updated last year
• nbaertsch / AutoAppDomainHijack

  View on GitHub
  Automated .NET AppDomain hijack payload generation
  ☆129Feb 4, 2025Updated last year
• dmcxblue / SharpGhostTask

  View on GitHub
  A C# port from Invoke-GhostTask
  ☆120Jan 5, 2024Updated 2 years ago
• YasserREED / NoBlindi

  View on GitHub
  NoBlindi is a command-line tool for exploiting blind NoSQL injection vulnerabilities to recover passwords in web applications.
  ☆28Nov 12, 2023Updated 2 years ago
• blackarrowsec / Handly

  View on GitHub
  Abuse leaked token handles.
  ☆136Dec 14, 2023Updated 2 years ago
• Karkas66 / CelestialSpark

  View on GitHub
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Mar 27, 2025Updated 11 months ago
• RedTeamPentesting / keycred

  View on GitHub
  Generate and Manage KeyCredentialLinks
  ☆253Mar 9, 2026Updated last week
• vxCrypt0r / AMSI_VEH

  View on GitHub
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆169May 30, 2024Updated last year
• floesen / EventLogCrasher

  View on GitHub
  ☆188Jan 23, 2024Updated 2 years ago
• weaselsec / GodPotato-Aggressor-Script

  View on GitHub
  ☆89Jan 2, 2024Updated 2 years ago
• BlackSnufkin / Invoke-DumpMDEConfig

  View on GitHub
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆155Jun 10, 2024Updated last year
• AlteredSecurity / Disable-TamperProtection

  View on GitHub
  A POC to disable TamperProtection and other Defender / MDE components
  ☆255Jun 6, 2024Updated last year
• huntandhackett / concealed_code_execution

  View on GitHub
  Tools and technical write-ups describing attacking techniques that rely on concealing code execution on Windows
  ☆223Aug 12, 2022Updated 3 years ago
• nettitude / SharpConflux

  View on GitHub
  ☆65Mar 15, 2024Updated 2 years ago
• emrekybs / AD-AssessmentKit

  View on GitHub
  Contains a collection of Bash scripts designed for comprehensive security audits and network mapping of Active Directory (AD) environment…
  ☆145May 17, 2024Updated last year
• BC-SECURITY / Moriarty

  View on GitHub
  Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…
  ☆515Aug 7, 2024Updated last year
• decoder-it / DFSCoerce-exe-2

  View on GitHub
  DFSCoerce exe revisited version with custom authentication
  ☆42Jan 13, 2024Updated 2 years ago
• ad0nis / ntlm_relay_gat

  View on GitHub
  ☆168Feb 29, 2024Updated 2 years ago
• rtecCyberSec / Packer_Development

  View on GitHub
  Slides & Code snippets for a workshop held @ x33fcon 2024
  ☆284Jun 15, 2024Updated last year
• vxCrypt0r / Voidgate

  View on GitHub
  A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…
  ☆592Jun 12, 2024Updated last year
• CCob / DRSAT

  View on GitHub
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆276Dec 27, 2024Updated last year
• 0xEr3bus / RdpStrike

  View on GitHub
  Positional Independent Code to extract clear text password from mstsc.exe using API Hooking via HWBP.
  ☆250Jun 11, 2024Updated last year
• ricardojoserf / NativeBypassCredGuard

  View on GitHub
  Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
  ☆268Apr 8, 2025Updated 11 months ago
• Leo4j / Invoke-SessionHunter

  View on GitHub
  Retrieve and display information about active user sessions on remote computers. No admin privileges required.
  ☆207Aug 12, 2024Updated last year
• mlcsec / SigFinder

  View on GitHub
  Identify binaries with Authenticode digital signatures signed to an internal CA/domain
  ☆40Feb 6, 2024Updated 2 years ago
• senzee1984 / EDRPrison

  View on GitHub
  Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry
  ☆460Aug 2, 2024Updated last year
• horizon3ai / CVE-2024-9465

  View on GitHub
  Proof of Concept Exploit for CVE-2024-9465
  ☆31Oct 9, 2024Updated last year
• klezVirus / koppeling-p

  View on GitHub
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆79Aug 5, 2024Updated last year
• mlcsec / proctools

  View on GitHub
  Small toolkit for extracting information and dumping sensitive strings from Windows processes
  ☆117Jul 17, 2024Updated last year
• cybersectroll / TrollAMSI

  View on GitHub
  ☆187Jun 14, 2025Updated 9 months ago
• t94j0 / adexplorersnapshot-rs

  View on GitHub
  ☆94Dec 9, 2025Updated 3 months ago
• FalconForceTeam / bof-winrm-plugin-jump

  View on GitHub
  ☆33Jan 23, 2025Updated last year