Alternatives and similar repositories for NTLMPasswordChanger

Users that are interested in NTLMPasswordChanger are comparing it to the libraries listed below

• jhalon / cSessionHop

  View on GitHub
  Beacon Object File (BOF) for Windows Session Hijacking via IHxHelpPaneServer COM
  ☆61Dec 25, 2025Updated last month
• ricardojoserf / w11_shadow_copies

  View on GitHub
  Manage Shadows Copies via the VSS API using C#, C++, Crystal or Python. Working on Windows 11
  ☆81Jan 26, 2026Updated 2 weeks ago
• kfallahi / UnderlayCopy

  View on GitHub
  PowerShell toolkit that extracts locked Windows files (SAM, SYSTEM, NTDS, ...) using MFT parsing and raw disk reads
  ☆238Oct 30, 2025Updated 3 months ago
• breakfix / SharpSCOM

  View on GitHub
  A C# utility for interacting with SCOM
  ☆95Dec 2, 2025Updated 2 months ago
• CodeXTF2 / Cobaltstrike_BOFLoader

  View on GitHub
  open source port/reimplementation of the Cobalt Strike BOF Loader as is
  ☆64Feb 3, 2026Updated last week
• TwoSevenOneT / EDR-Redir

  View on GitHub
  EDR-Redir : a tool used to redirect the EDR's folder to another location.
  ☆222Nov 6, 2025Updated 3 months ago
• zero2504 / EDR-GhostLocker

  View on GitHub
  AppLocker-Based EDR Neutralization
  ☆289Dec 19, 2025Updated last month
• Maldev-Academy / DumpChromeSecrets

  View on GitHub
  Extract data from modern Chrome versions, including refresh tokens, cookies, saved credentials, autofill data, browsing history, and book…
  ☆545Jan 8, 2026Updated last month
• mandiant / cleanldap

  View on GitHub
  ☆164Oct 21, 2025Updated 3 months ago
• Shac0x / Wonka

  View on GitHub
  Wonka is a sweet Windows tool that extracts Kerberos tickets from the Local Security Authority (LSA) cache. Like finding a ticket, but fo…
  ☆164Oct 21, 2025Updated 3 months ago
• sensepost / depscanner

  View on GitHub
  Detect public repository dependencies in the GitHub repositories with an orphan required library.
  ☆22Jun 24, 2025Updated 7 months ago
• inzlain / sameuser

  View on GitHub
  Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
  ☆14Jul 13, 2022Updated 3 years ago
• 3lp4tr0n / SessionHop

  View on GitHub
  Windows Session Hijacking via COM
  ☆335Dec 13, 2025Updated 2 months ago
• MayerDaniel / the-one-wsl-bof

  View on GitHub
  One WSL BOF to rule them all
  ☆138Jan 14, 2026Updated last month
• CompassSecurity / bloodhoundce-resources

  View on GitHub
  ☆99Dec 11, 2025Updated 2 months ago
• synacktiv / GroupPolicyBackdoor

  View on GitHub
  Group Policy Objects manipulation and exploitation framework
  ☆289Dec 7, 2025Updated 2 months ago
• spaceraccoon / serverless-recon-example

  View on GitHub
  Example of a serverless web reconaissance workflow's AWS architecture.
  ☆11Feb 25, 2023Updated 2 years ago
• mubix / Find-WSUS

  View on GitHub
  Helps defenders find their WSUS configurations in the wake of CVE-2025-59287
  ☆46Oct 28, 2025Updated 3 months ago
• SpecterOps / ConfigManBearPig

  View on GitHub
  PowerShell collector for adding SCCM attack paths to BloodHound with OpenGraph
  ☆67Jan 30, 2026Updated 2 weeks ago
• OleFredrik1 / remoteKrbRelayx

  View on GitHub
  A tool for coercing and relaying Kerberos authentication over DCOM and RPC.
  ☆146Jul 17, 2025Updated 6 months ago
• ZephrFish / ADFSDump-PS

  View on GitHub
  PowerShell Implementation of ADFSDump to assist with GoldenSAML
  ☆38Dec 7, 2025Updated 2 months ago
• exfil0 / CVE-2024-55591-POC

  View on GitHub
  A comprehensive all-in-one Python-based Proof of Concept script to discover and exploit a critical authentication bypass vulnerability (C…
  ☆12May 26, 2025Updated 8 months ago
• Cobalt-Strike / aggressor_script_examples

  View on GitHub
  This repository contains tips, tricks, and examples of aggressor script functions. The intent is to share bite size examples that can be …
  ☆16Aug 12, 2025Updated 6 months ago
• malacupa / starhound-importer

  View on GitHub
  ☆15Jan 26, 2023Updated 3 years ago
• 1r0BIT / TaskHound

  View on GitHub
  Tool to enumerate privileged Scheduled Tasks on Remote Systems
  ☆277Jan 12, 2026Updated last month
• monsieurPale / BreakFAST

  View on GitHub
  Proof of concept for Kerberos Armoring abuse.
  ☆78Dec 12, 2025Updated 2 months ago
• casp3r0x0 / CallWindowProcW-ShellcodeLoader

  View on GitHub
  ☆18Sep 1, 2025Updated 5 months ago
• Joflixen / signtool

  View on GitHub
  Signing Visual Basic Macros in Office Files
  ☆14Oct 25, 2020Updated 5 years ago
• susMdT / ForsHops

  View on GitHub
  ForsHops
  ☆59Mar 25, 2025Updated 10 months ago
• fastlorenzo / redelk-kibana-app

  View on GitHub
  Kibana app for RedELK
  ☆18Mar 19, 2023Updated 2 years ago
• sudonoodle / BOF-entra-authcode-flow

  View on GitHub
  Beacon Object File (BOF) to obtain Entra tokens via authcode flow.
  ☆122Jan 17, 2026Updated 3 weeks ago
• jnqpblc / SharpDir

  View on GitHub
  SharpDir is a simple code set to search both local and remote file systems for files and is compatible with Cobalt Strike.
  ☆30Jul 4, 2019Updated 6 years ago
• absolomb / FindMeAccess

  View on GitHub
  ☆193Dec 17, 2025Updated last month
• vysecurity / AggressorScripts-1

  View on GitHub
  Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
  ☆13Jun 24, 2018Updated 7 years ago
• l4rm4nd / PyADRecon

  View on GitHub
  Python3 implementation of ADRecon with support for NTLM and Kerberos authentication. Generates individual CSV files and a single XSLX rep…
  ☆24Updated this week
• zh54321 / PoCEntraDeviceComplianceBypass

  View on GitHub
  Simple pure PowerShell POC to bypass Entra / Intune Compliance Conditional Access Policy
  ☆167Nov 17, 2025Updated 2 months ago
• rad9800 / FileRenameJunctionsEDRDisable

  View on GitHub
  ☆159Dec 13, 2024Updated last year
• eman-ekaf / Phishable

  View on GitHub
  Phishable is a project that logs misconfigured DNS that can be exploited to conduct phishing attacks & spoof domains. Phishable helps org…
  ☆21May 1, 2023Updated 2 years ago
• kypvas / LDIFToBloodHound

  View on GitHub
  A Windows tool that converts LDIF files to BloodHound CE
  ☆25Dec 20, 2025Updated last month