huntandhackett/PassiveAggression external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

huntandhackett/PassiveAggression

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/huntandhackett/PassiveAggression)

Close

huntandhackett / PassiveAggressionView on GitHubMore

• External links
• Readme badge

Source code and examples for PassiveAggression

☆64Jun 6, 2024Updated last year

Alternatives and similar repositories for PassiveAggression

Users that are interested in PassiveAggression are comparing it to the libraries listed below

• sensepost / dresscode

  View on GitHub
  Scan websites CSP policies and visualise their vunlnerabilities from a dashboard
  ☆13Mar 11, 2025Updated 11 months ago
• CCob / gssapi-abuse

  View on GitHub
  A tool for enumerating potential hosts that are open to GSSAPI abuse within Active Directory networks
  ☆182Aug 16, 2025Updated 6 months ago
• 0xsp-SRD / MDE_Enum

  View on GitHub
  comprehensive .NET tool designed to extract and display detailed information about Windows Defender exclusions and Attack Surface Reducti…
  ☆211Jun 10, 2024Updated last year
• mlcsec / Graphpython

  View on GitHub
  Modular cross-platform Microsoft Graph API (Entra, o365, and Intune) enumeration and exploitation toolkit
  ☆165Dec 7, 2024Updated last year
• decoder-it / KrbRelay-SMBServer

  View on GitHub
  ☆235Oct 8, 2024Updated last year
• CICADA8-Research / RemoteKrbRelay

  View on GitHub
  Remote Kerberos Relay made easy! Advanced Kerberos Relay Framework
  ☆638May 8, 2025Updated 9 months ago
• Karkas66 / CelestialSpark

  View on GitHub
  Version 2 - A modern 64-bit position independent meterpreter and Sliver compatible reverse_TCP Staging Shellcode based on Cracked5piders …
  ☆103Mar 27, 2025Updated 11 months ago
• cybersectroll / TrollUAC

  View on GitHub
  ☆144May 22, 2024Updated last year
• dmcxblue / SharpGhostTask

  View on GitHub
  A C# port from Invoke-GhostTask
  ☆120Jan 5, 2024Updated 2 years ago
• blackarrowsec / Handly

  View on GitHub
  Abuse leaked token handles.
  ☆136Dec 14, 2023Updated 2 years ago
• nbaertsch / AutoAppDomainHijack

  View on GitHub
  Automated .NET AppDomain hijack payload generation
  ☆129Feb 4, 2025Updated last year
• ad0nis / ntlm_relay_gat

  View on GitHub
  ☆168Feb 29, 2024Updated 2 years ago
• floesen / EventLogCrasher

  View on GitHub
  ☆189Jan 23, 2024Updated 2 years ago
• RedTeamPentesting / keycred

  View on GitHub
  Generate and Manage KeyCredentialLinks
  ☆248Jan 30, 2026Updated last month
• YasserREED / NoBlindi

  View on GitHub
  NoBlindi is a command-line tool for exploiting blind NoSQL injection vulnerabilities to recover passwords in web applications.
  ☆28Nov 12, 2023Updated 2 years ago
• iomoath / FileWatchTower

  View on GitHub
  FWT is a security analysis and file monitoring tool that utilizes Sysmon events.
  ☆28Jul 15, 2024Updated last year
• decoder-it / DFSCoerce-exe-2

  View on GitHub
  DFSCoerce exe revisited version with custom authentication
  ☆42Jan 13, 2024Updated 2 years ago
• emrekybs / AD-AssessmentKit

  View on GitHub
  Contains a collection of Bash scripts designed for comprehensive security audits and network mapping of Active Directory (AD) environment…
  ☆144May 17, 2024Updated last year
• 0xRedpoll / ludus_mythic_teamserver

  View on GitHub
  Ludus role for deploying a Mythic Teamserver onto Linux servers
  ☆23Mar 16, 2025Updated 11 months ago
• vxCrypt0r / AMSI_VEH

  View on GitHub
  A Powershell AMSI Bypass technique via Vectored Exception Handler (VEH). This technique does not perform assembly instruction patching, f…
  ☆168May 30, 2024Updated last year
• weaselsec / GodPotato-Aggressor-Script

  View on GitHub
  ☆89Jan 2, 2024Updated 2 years ago
• BC-SECURITY / Moriarty

  View on GitHub
  Moriarty is designed to enumerate missing KBs, detect various vulnerabilities, and suggest potential exploits for Privilege Escalation in…
  ☆514Aug 7, 2024Updated last year
• klezVirus / koppeling-p

  View on GitHub
  Adaptive DLL hijacking / dynamic export forwarding - EAT preserve
  ☆79Aug 5, 2024Updated last year
• BlackSnufkin / Invoke-DumpMDEConfig

  View on GitHub
  PowerShell script to dump Microsoft Defender Config, protection history and Exploit Guard Protection History (no admin privileges requir…
  ☆154Jun 10, 2024Updated last year
• Friends-Security / SharpExclusionFinder

  View on GitHub
  Tool designed to find folder exclusions using Windows Defender using command line utility MpCmdRun.exe as a low privileged user, without …
  ☆230Oct 6, 2024Updated last year
• cybersectroll / TrollAMSI

  View on GitHub
  ☆186Jun 14, 2025Updated 8 months ago
• AlteredSecurity / Disable-TamperProtection

  View on GitHub
  A POC to disable TamperProtection and other Defender / MDE components
  ☆254Jun 6, 2024Updated last year
• ricardojoserf / NativeBypassCredGuard

  View on GitHub
  Bypass Credential Guard by patching WDigest.dll using only NTAPI functions
  ☆266Apr 8, 2025Updated 10 months ago
• senzee1984 / EDRPrison

  View on GitHub
  Leverage a legitimate WFP callout driver to prevent EDR agents from sending telemetry
  ☆458Aug 2, 2024Updated last year
• vxCrypt0r / Voidgate

  View on GitHub
  A technique that can be used to bypass AV/EDR memory scanners. This can be used to hide well-known and detected shellcodes (such as msfve…
  ☆592Jun 12, 2024Updated last year
• nettitude / SharpConflux

  View on GitHub
  ☆65Mar 15, 2024Updated last year
• CCob / DRSAT

  View on GitHub
  Disconnected RSAT - A method of running Group Policy Manager, Certificate Authority and Certificate Templates MMC snap-ins from non-domai…
  ☆275Dec 27, 2024Updated last year
• sensepost / mydumbedr

  View on GitHub
  ☆120Jan 30, 2024Updated 2 years ago
• S3N4T0R-0X0 / Checkmate

  View on GitHub
  payload Execution by Fake Windows SmartScreen with requires Administrator privileges & Turn off real SmartScreen Filter
  ☆112Jan 12, 2024Updated 2 years ago
• mlcsec / EDRenum-BOF

  View on GitHub
  Identify common EDR processes, directories, and services. Simple BOF of Invoke-EDRChecker.
  ☆128Oct 4, 2024Updated last year
• rweijnen / createdump

  View on GitHub
  Leverage WindowsApp createdump tool to obtain an lsass dump
  ☆153Sep 20, 2024Updated last year
• mlcsec / SigFinder

  View on GitHub
  Identify binaries with Authenticode digital signatures signed to an internal CA/domain
  ☆40Feb 6, 2024Updated 2 years ago
• Kudaes / Eclipse

  View on GitHub
  Activation Context Hijack
  ☆169Aug 3, 2025Updated 6 months ago
• naksyn / ProcessStomping

  View on GitHub
  A variation of ProcessOverwriting to execute shellcode on an executable's section
  ☆148Dec 16, 2023Updated 2 years ago