Alternatives and similar repositories for Active-Directory-Exploitation:

Users that are interested in Active-Directory-Exploitation are comparing it to the libraries listed below

• quahac / Azure-AD-Password-Checker
  Azure AD Password Checker
  ☆84Updated 2 weeks ago
• horizon3ai / backup_dc_registry
  A simple POC that abuses Backup Operator privileges to remote dump SAM, SYSTEM, and SECURITY
  ☆80Updated 2 years ago
• He-No / ntlmrelayx2proxychains
  ☆92Updated 2 years ago
• bashexplode / cs2webconfig
  Convert Cobalt Strike profiles to IIS web.config files
  ☆112Updated 3 years ago
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆77Updated last year
• RayRRT / Active-Directory-Certificate-Services-abuse
  ☆44Updated 2 years ago
• improsec / BackupOperatorToolkit
  The BackupOperatorToolkit contains different techniques allowing you to escalate from Backup Operator to Domain Admin
  ☆168Updated last year
• ricardojba / Invoke-noPac
  .Net Assembly loader for the [CVE-2021-42287 - CVE-2021-42278] Scanner & Exploit noPac
  ☆60Updated last year
• ExAndroidDev / impacket
  Impacket is a collection of Python classes for working with network protocols.
  ☆39Updated 3 years ago
• EncodeGroup / Gopher
  C# tool to discover low hanging fruits
  ☆89Updated 2 years ago
• LudovicPatho / CVE-2022-26923_AD-Certificate-Services
  The vulnerability allowed a low-privileged user to escalate privileges to domain administrator in a default Active Directory environment …
  ☆44Updated 2 years ago
• Qazeer / OffensivePythonPipeline
  Static standalone binaries for Linux and Windows (x64) of Python offensive tools. Compiled using PyInstaller, Docker for Windows, WSL2, a…
  ☆100Updated 2 years ago
• xenoscr / SysWhispers2
  AV/EDR evasion via direct system calls.
  ☆107Updated last year
• rasta-mouse / SCMUACBypass
  ☆94Updated last year
• notsoshant / DCSyncer
  Perform DCSync operation without mimikatz
  ☆142Updated 2 months ago
• powerseb / PowerExtract
  ☆113Updated last year
• wh0amitz / SharpRODC
  To audit the security of read-only domain controllers
  ☆114Updated last year
• GoSecure / ldap-scanner
  Checks for signature requirements over LDAP
  ☆95Updated 2 years ago
• cinzinga / Evasion-Practice
  A variety of AV evasion techniques written in C# for practice.
  ☆83Updated 3 years ago
• p0dalirius / MSSQL-Analysis-Coerce
  A technique to coerce a Windows SQL Server to authenticate on an arbitrary machine.
  ☆125Updated last year
• blackarrowsec / Certify
  Active Directory certificate abuse.
  ☆37Updated 2 years ago
• EvilEnigma / OSEP-Study
  A repository of tools developed while studying for OSEP. The contents here are not part of courseware but some tools, i wrote as an exten…
  ☆1Updated 7 months ago
• laxa / SharpSecretsdump
  Secretsdump C# version only supporting local (live) operation
  ☆48Updated last year
• sfewer-r7 / CVE-2023-27532
  Exploit for CVE-2023-27532 against Veeam Backup & Replication
  ☆105Updated last year
• rootSySdk / PowerGPOAbuse
  Powershell version of SharpGPOAbuse
  ☆71Updated 3 years ago
• MzHmO / psexec_noinstall
  Repository contains psexec, which will help to exploit the forgotten pipe
  ☆166Updated 2 months ago
• EspressoCake / DLL-Hijack-Search-Order-BOF
  DLL Hijack Search Order Enumeration BOF
  ☆141Updated 3 years ago
• kymb0 / Stealth_shellcode_runners
  ☆55Updated 10 months ago
• RikunjSindhwad / MSSQL-Attacker
  MSSQL Database Attacker tool
  ☆189Updated 2 years ago
• G0ldenGunSec / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆125Updated 10 months ago