Alternatives and similar repositories for go-lsass

Users that are interested in go-lsass are comparing it to the libraries listed below

• skelsec / adiskreader-secretsdump
  Extract registry and NTDS secrets from local or remote disk images
  ☆43Updated 4 months ago
• jojonas / SharpSAMDump
  SAM Dumping in C#
  ☆49Updated 6 months ago
• HulkOperator / AuthStager
  ☆55Updated 8 months ago
• ZephrFish / ADFSDump-PS
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆35Updated 2 months ago
• decoder-it / DFSCoerce-exe-2
  DFSCoerce exe revisited version with custom authentication
  ☆40Updated last year
• nullenc0de / trust-validator
  Validates priv escalation of AD trusts
  ☆45Updated 3 months ago
• Patrick0x41 / BOF_All_Things
  Beacon Object Files (BOF) for Cobalt Strike.
  ☆31Updated 10 months ago
• ZSECURE / zDocker-cobaltstrike
  Docker container for running CobaltStrike 4.10
  ☆37Updated 9 months ago
• nyxgeek / autodiscover_enum
  time-based user enum via Basic Auth in Azure against Autodiscover
  ☆32Updated 9 months ago
• slygoo / pssrecon
  ☆24Updated 9 months ago
• synacktiv / AADOutsider-py
  Python3 rewrite of AsOutsider features of AADInternals
  ☆50Updated 6 months ago
• redskal / SharpAzbelt
  .NET port of Leron Gray's azbelt tool.
  ☆26Updated last year
• Leo4j / PowerDACL
  A tool to abuse weak permissions of Active Directory Discretionary Access Control Lists (DACLs) and Access Control Entries (ACEs)
  ☆56Updated this week
• snovvcrash / RemoteRegSave
  A .NET implementation to dump SAM, SYSTEM, SECURITY registry hives from a remote host
  ☆39Updated last year
• OtterHacker / ShareFouine
  ☆50Updated 8 months ago
• 0xB455 / ActiveSyncBruter
  ☆26Updated 4 months ago
• nickvourd / Rocabella
  Sniffing files generator
  ☆59Updated 4 months ago
• latortuga71 / SharpChisel-NG
  ☆36Updated last year
• whokilleddb / SOAPHound
  SOAPHound is a custom-developed .NET data collector tool which can be used to enumerate Active Directory environments via the Active Dire…
  ☆33Updated last year
• decoder-it / NewMachineAccount
  ☆36Updated 4 months ago
• andreisss / Living-off-the-COM-Type-Coercion-Abuse
  This technique leverages PowerShell's .NET interop layer and COM automation to achieve stealthy command execution by abusing implicit typ…
  ☆47Updated 2 months ago
• 0xbad53c / OffSecOps-Arsenal
  Aggressor script to automatically download and load an arsenal of open source and private Cobalt Strike tooling.
  ☆25Updated 11 months ago
• felmoltor / goLAPS
  Retrieve LAPS passwords from a domain. The tools is inspired in pyLAPS.
  ☆31Updated 4 months ago
• mr-r3bot / bof-modules
  BOF for C2 framework
  ☆41Updated 8 months ago
• watchtowrlabs / watchTowr-vs-FortiWeb-CVE-2025-25257
  ☆30Updated this week
• foxlox / hypobrychium
  Duplicate not owned Token from Running Process
  ☆72Updated last year
• safedv / GPOAnalyzer
  GPOAnalyzer is a tool designed to assist in parsing domain Group Policy Object (GPO) files located in the SYSVOL directory.
  ☆27Updated last year
• Offensive-Panda / .NET_PROFILER_DLL_LOADING
  .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…
  ☆43Updated 11 months ago
• Leo4j / KeyCredentialLink
  Add Shadow Credentials to a target object by editing their msDS-KeyCredentialLink attribute
  ☆23Updated last year
• Mr-Un1k0d3r / MsGraphFunzy
  Scripts to interact with Microsoft Graph APIs
  ☆43Updated 8 months ago