Alternatives and similar repositories for dpapi-ng:

Users that are interested in dpapi-ng are comparing it to the libraries listed below

• SygniaLabs / BackupKeyManager
  ☆11Updated 7 months ago
• RemiEscourrou / Invoke-Leghorn
  Leghorn code for PKI abuse
  ☆32Updated 3 years ago
• olafhartong / PockETWatcher
  a tiny program to consume from ETW providers for research
  ☆46Updated last month
• jsecurity101 / LDAPMon
  ☆45Updated last year
• secureworks / BAADTokenBroker
  ☆74Updated 10 months ago
• dirkjanm / ROADtoken
  ☆84Updated 4 years ago
• secureworks / TokenMan
  ☆100Updated 2 years ago
• Mr-B0b / BloodCheck
  BloodCheck enables Red and Blue Teams to manage multiple Neo4j databases and run Cypher queries against a BloodHound dataset.
  ☆17Updated 3 years ago
• morRubin / AzureADJoinedMachinePTC
  Tool to perform lateral movement between AAD joined devices
  ☆53Updated 2 years ago
• Semperis / GoldenGMSA
  GolenGMSA tool for working with GMSA passwords
  ☆139Updated 10 months ago
• Dramelac / GoldenCopy
  Copy the properties and groups of a user from neo4j (bloodhound) to create an identical golden ticket.
  ☆84Updated 9 months ago
• AssuranceMaladieSec / FoxTerrier
  Python tool to find vulnerable AD object and generating csv report
  ☆26Updated 2 years ago
• pgormanDS / hash_spider
  A module for CME that spiders across a domain.
  ☆35Updated 2 years ago
• sap8899 / Group3rExplorer
  Fun GUI for Group3rs output log
  ☆37Updated last year
• BinaryDefense / YaraMemoryScanner
  Simple PowerShell script to enable process scanning with Yara.
  ☆91Updated 2 years ago
• HackmichNet / SharpAzToken
  ☆42Updated last year
• morRubin / NegoExRelay
  ☆85Updated 2 years ago
• Qazeer / FarsightAD
  PowerShell script that aim to help uncovering (eventual) persistence mechanisms deployed by a threat actor following an Active Directory …
  ☆93Updated last year
• lkarlslund / hashmuncher
  Grab NetNTLMv2 hashes using ETW with administrative rights on Windows 8.1 / Windows Server 2016 and later
  ☆91Updated last year
• Synzack / ludus_sccm
  An Ansible collection that installs an SCCM deployment with optional configurations.
  ☆69Updated 7 months ago
• PwnDefend / Active_Directory_ADSI_Audit_Powershell
  blame Huy
  ☆42Updated 4 years ago
• commial / LiveDiffAD
  AD Live changes viewer
  ☆35Updated last year
• bouj33boy / Domain-Persistence-Detection-Triage-and-Recovery-SO-CON-2024
  Resources Links for the Research Based on Josh Prager and Nico Shyne's
  ☆13Updated 3 months ago
• lkarlslund / azureimposter
  Go module that allows you to authenticate to Azure with a well known client ID using interactive logon and grab the token
  ☆25Updated 2 years ago
• bitsadmin / lofl
  Living Off the Foreign Land setup scripts
  ☆64Updated last month
• dirkjanm / roadtools_hybrid
  Hybrid AD utilities for ROADtools
  ☆67Updated 3 weeks ago
• 0xe7 / WonkaVision
  ☆82Updated 2 years ago
• BloodHoundAD / TierZeroTable
  Table of AD and Azure assets and whether they belong to Tier Zero
  ☆25Updated last year
• techBrandon / CAPs
  Scripts to enumerate and report on Entra Conditional Access
  ☆22Updated 5 months ago
• daem0nc0re / Abusing_Weak_ACL_on_Certificate_Templates
  Investigation about ACL abusing for Active Directory Certificate Services (AD CS)
  ☆120Updated 3 years ago