Alternatives and similar repositories for ImproHound:

Users that are interested in ImproHound are comparing it to the libraries listed below

• nheiniger / SnaffPoint
  A tool for pointesters to find candies in SharePoint
  ☆254Updated 2 years ago
• 0xJs / CARTP-cheatsheet
  Azure AD cheatsheet for the CARTP course
  ☆114Updated 3 years ago
• Semperis / GoldenGMSA
  GolenGMSA tool for working with GMSA passwords
  ☆145Updated last year
• SpecterOps / presentations
  SpecterOps Presentations
  ☆194Updated this week
• mgeeky / AzureRT
  AzureRT - A Powershell module implementing various Azure Red Team tactics
  ☆232Updated 2 years ago
• SadProcessor / HandsOnBloodHound
  Material for the "Hands-On BloodHound" Workshop
  ☆108Updated 4 years ago
• fortalice / bofhound
  Generate BloodHound compatible JSON from logs written by ldapsearch BOF, pyldapsearch and Brute Ratel's LDAP Sentinel
  ☆329Updated last year
• 1njected / CMLoot
  Find interesting files stored on (System Center) Configuration Manager (SCCM/CM) SMB shares
  ☆175Updated 2 years ago
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆93Updated last year
• LuemmelSec / Custom-BloodHound-Queries
  ☆178Updated 5 months ago
• Mayyhem / Maestro
  Abusing Intune for Lateral Movement over C2
  ☆335Updated 2 months ago
• xpn / sccmwtf
  ☆151Updated 3 months ago
• puzzlepeaches / msprobe
  Finding all things on-prem Microsoft for password spraying and enumeration.
  ☆254Updated 2 years ago
• MzHmO / PowershellKerberos
  Some scripts to abuse kerberos using Powershell
  ☆328Updated last year
• garrettfoster13 / aced
  ☆159Updated 6 months ago
• garrettfoster13 / pre2k
  A tool to query for the existence of pre-windows 2000 computer objects.
  ☆329Updated 3 weeks ago
• 0xJs / domain_audit
  Audit tool for Active Directory. Automates a lot of checks from a pentester perspective.
  ☆164Updated 7 months ago
• kaluche / bloodhound-quickwin
  Simple script to extract useful informations from the combo BloodHound + Neo4j
  ☆241Updated last month
• lkarlslund / deploy-goad
  Script to install prerequisites for deploying GOAD on Ubuntu Linux 22.04
  ☆111Updated 10 months ago
• trustedsec / orpheus
  Bypassing Kerberoast Detections with Modified KDC Options and Encryption Types
  ☆384Updated last month
• cfalta / PoshADCS
  A proof of concept on attack vectors against Active Directory by abusing Active Directory Certificate Services (ADCS)
  ☆187Updated 3 years ago
• RedSiege / jargon
  ☆143Updated last month
• nettitude / MalSCCM
  ☆246Updated last year
• improsec / Get-bADpasswords
  Get insights into the actual strength and quality of passwords in Active Directory.
  ☆154Updated 9 months ago
• Mayyhem / SharpSCCM
  A C# utility for interacting with SCCM
  ☆628Updated 7 months ago
• t3hbb / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆84Updated 2 years ago
• Z4kSec / Masky
  Python library with CLI allowing to remotely dump domain user credentials via an ADCS without dumping the LSASS process memory
  ☆388Updated last year
• netwrix / PingCastleCloud
  Audit program for AzureAD
  ☆147Updated last year
• mandiant / ADFSpoof
  ☆391Updated 8 months ago
• Allevon412 / TeamsImplant
  ☆208Updated 3 years ago