Alternatives and similar repositories for BloodHound.py-Kerberos:

Users that are interested in BloodHound.py-Kerberos are comparing it to the libraries listed below

• buyne / OSEP-1
  ☆31Updated 3 years ago
• n3t1nv4d3 / ADRedTeamEnumScript
  Traditional AD RedTeam Full Enumeration Script used to query all aspects of your target Forest.
  ☆42Updated 9 months ago
• Qazeer / OffensivePythonPipeline
  Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…
  ☆100Updated 2 years ago
• garrettfoster13 / aced
  ☆158Updated 4 months ago
• csandker / pxethiefy
  ☆49Updated last month
• rootshooter / shellcoder
  Shellcode generation and encoding utility
  ☆21Updated 2 years ago
• xct / winpspy
  CLI monitor for windows process- & file activity
  ☆83Updated 4 years ago
• Karmaz95 / evasion
  AV EVASION TECHNIQUES
  ☆77Updated 2 years ago
• timip / OSEP
  PEN-300/OSEP Public resources for PEN-300 Training
  ☆89Updated 3 years ago
• t3hbb / DefenderCheck
  Identifies the bytes that Microsoft Defender flags on.
  ☆84Updated 2 years ago
• Sq00ky / SMB-Session-Spoofing
  ☆120Updated last year
• Cobalt-Strike / ElevateKit
  The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
  ☆113Updated 4 years ago
• w0Tx / generate-ad-username
  Simple python which takes FirstName and LastName to generate possible AD Usernames. Usefull for OSCP, Labs...
  ☆21Updated last month
• szymex73 / bloodhound-convert
  Python based Bloodhound data converter from the legacy pre 4.1 format to 4.1+ format
  ☆56Updated 2 years ago
• ShutdownRepo / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆69Updated 7 months ago
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆80Updated 3 years ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆169Updated 2 years ago
• p0dalirius / pyLAPS
  Python setter/getter for property ms-Mcs-AdmPwd used by LAPS.
  ☆97Updated 4 months ago
• bitsadmin / chophound
  Some scripts to support with importing large datasets into BloodHound
  ☆79Updated last year
• powerseb / PowerExtract
  ☆116Updated last year
• synacktiv / Prox-Ez
  ☆90Updated last month
• dadevel / mssql-spider
  Automated exploitation of MSSQL servers at scale
  ☆106Updated last month
• xct / SeRestoreAbuse
  SeRestorePrivilege to SYSTEM
  ☆95Updated 3 years ago
• fkasler / dolosjs
  Red Team "Drop and Run" NAC (802.1x) Bypass
  ☆70Updated last year
• Gl3bGl4z / All_NTLM_leak
  ☆68Updated 4 years ago
• G0ldenGunSec / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆127Updated last year
• Acceis / bqm
  Deduplicate custom BloudHound queries from different datasets and merge them in one customqueries.json file.
  ☆37Updated 11 months ago
• ustayready / ShredHound
  Small utility to chunk up a large BloodHound JSON file into smaller files for importing.
  ☆92Updated last year
• 0xBallpoint / LOAD
  Lord Of Active Directory - automatic vulnerable active directory on AWS
  ☆141Updated last year
• ananth-she11z / AutoSQL
  A tool to enumerate and exploit SQL Servers in AD
  ☆34Updated last year