Alternatives and similar repositories for ImproHound

Users that are interested in ImproHound are comparing it to the libraries listed below

• LuemmelSec / Custom-BloodHound-Queries
  ☆182Updated last year
• nheiniger / SnaffPoint
  A tool for pointesters to find candies in SharePoint
  ☆272Updated 3 years ago
• SpecterOps / presentations
  SpecterOps Presentations
  ☆209Updated last week
• mgeeky / AzureRT
  AzureRT - A Powershell module implementing various Azure Red Team tactics
  ☆236Updated 3 years ago
• Semperis / GoldenGMSA
  GolenGMSA tool for working with GMSA passwords
  ☆164Updated 4 months ago
• cfalta / PoshADCS
  A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)
  ☆194Updated 4 years ago
• 0xJs / CARTP-cheatsheet
  Azure AD cheatsheet for the CARTP course
  ☆141Updated 3 years ago
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆97Updated last month
• MzHmO / PowershellKerberos
  Some scripts to abuse kerberos using Powershell
  ☆353Updated 2 years ago
• paranoidninja / O365-Doppelganger
  A quick handy script to harvest credentials off of a user during a Red Team and get execution of a file from the user
  ☆258Updated 3 years ago
• xpn / sccmwtf
  ☆158Updated 10 months ago
• dirkjanm / ROADtoken
  ☆98Updated 5 years ago
• puzzlepeaches / msprobe
  Finding all things on-prem Microsoft for password spraying and enumeration.
  ☆258Updated 3 years ago
• LuccaSA / PingCastle-Notify
  Monitor your PingCastle scans to highlight the rule diff between two scans
  ☆154Updated 2 weeks ago
• SadProcessor / HandsOnBloodHound
  Material for the "Hands-On BloodHound" Workshop
  ☆111Updated 4 years ago
• idnahacks / GoodHound
  Uses Sharphound, Bloodhound and Neo4j to produce an actionable list of attack paths for targeted remediation.
  ☆478Updated last year
• Flangvik / AzureC2Relay
  AzureC2Relay is an Azure Function that validates and relays Cobalt Strike beacon traffic by verifying the incoming requests based on a Co…
  ☆233Updated 4 years ago
• leechristensen / RequestAADRefreshToken
  ☆154Updated 2 years ago
• garrettfoster13 / aced
  ☆197Updated 3 months ago
• RedSiege / jargon
  ☆154Updated 9 months ago
• improsec / Get-bADpasswords
  Get insights into the actual strength and quality of passwords in Active Directory.
  ☆156Updated last year
• api0cradle / PowerAL
  A Powershell module that helps you identify AppLocker weaknesses
  ☆170Updated 5 years ago
• lkarlslund / deploy-goad
  Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04
  ☆116Updated last year
• trustedsec / SeeYouCM-Thief
  ☆195Updated 2 years ago
• SadProcessor / CypherDog
  PoSh BloodHound Dog Whisperer
  ☆193Updated 2 years ago
• trustedsec / orpheus
  Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types
  ☆408Updated 9 months ago
• mdsecactivebreach / Farmer
  ☆408Updated 4 years ago
• latortuga71 / TortugaToolKit
  Collection of some of my own tools with other great open source tools out there packaged into a powershell module
  ☆146Updated 3 years ago
• Mayyhem / Maestro
  Abusing Azure services over C2
  ☆366Updated 6 months ago
• MWR-CyberSec / PXEThief
  PXEThief is a set of tooling that can extract passwords from the Operating System Deployment functionality in Microsoft Endpoint Configur…
  ☆404Updated last year