Alternatives and similar repositories for BloodHound-Custom-Queries

Users that are interested in BloodHound-Custom-Queries are comparing it to the libraries listed below

• b1gbroth3r / red-team-infrastructure-example

  View on GitHub
  A basic Terraform configuration for provisioning simple red team infrastructure in DigitalOcean
  ☆12May 5, 2021Updated 4 years ago
• knavesec / EyeWitnessTheFitness

  View on GitHub
  Exactly what it sounds like, which is something rad
  ☆22Oct 12, 2022Updated 3 years ago
• knavesec / o365fedenum

  View on GitHub
  Federated Office365 user enumeration based on correlated response trend analysis
  ☆50May 3, 2022Updated 3 years ago
• matterpreter / getDA.sh

  View on GitHub
  Identify common attack paths to get Domain Administrator
  ☆22Aug 20, 2019Updated 6 years ago
• matro7sh / bof-collection

  View on GitHub
  collection of beacon object file (Cobalt strike)
  ☆12Jan 21, 2023Updated 3 years ago
• inzlain / sameuser

  View on GitHub
  Helper script for BloodHound to automatically add relationships between multiple accounts owned by the same individual
  ☆14Jul 13, 2022Updated 3 years ago
• CCob / chlonium

  View on GitHub
  Chromium Cookie import / export tool
  ☆11Jul 21, 2024Updated last year
• a7t0fwa7 / Attacker_Infrastructure_Setup

  View on GitHub
  ☆12Apr 5, 2025Updated 10 months ago
• EspressoCake / DLL_Version_Enumeration_BOF

  View on GitHub
  A BOF for enumerating version information for DLLs associated for a Beacon process.
  ☆16Nov 23, 2021Updated 4 years ago
• degenerat3 / Sawmill

  View on GitHub
  ELK stack for red team logs
  ☆13Oct 30, 2020Updated 5 years ago
• jgamblin / NMap-Action

  View on GitHub
  A Github Action That Launches an NMap Scan Vulners Scan & Opens A Github Issue With The Findings
  ☆17Dec 30, 2018Updated 7 years ago
• two06 / SharpStick

  View on GitHub
  ☆18Jul 3, 2020Updated 5 years ago
• OmerYa / ROP-From-Zero-to-Nation-State-In-25-Minutes

  View on GitHub
  Pinjectra is a C/C++ OOP-like library that implements Process Injection techniques (with focus on Windows 10 64-bit)
  ☆16Sep 4, 2020Updated 5 years ago
• outflanknl / RedFile

  View on GitHub
  Serving files with conditions, serverside keying and more.
  ☆18May 26, 2022Updated 3 years ago
• Und3rf10w / CobaltStrikeBOFs

  View on GitHub
  Beacon Object Files used for Cobalt Strike
  ☆19Jul 18, 2023Updated 2 years ago
• trainr3kt / Readfile_BoF

  View on GitHub
  ☆22Jun 21, 2022Updated 3 years ago
• vletoux / ADSecrets

  View on GitHub
  Set of ultra technical notes about AD
  ☆18Jun 17, 2018Updated 7 years ago
• BOFs / BOFs

  View on GitHub
  Beacon Object Files.
  ☆36Feb 26, 2024Updated last year
• blacklanternsecurity / enter_the_matrix

  View on GitHub
  ETM enables the creation of detailed attack graphs and figures while calculating the risk associated with your attack narratives. ETM was…
  ☆26Mar 3, 2023Updated 2 years ago
• bitsadmin / cobaltstrike

  View on GitHub
  Everything related to Cobalt Strike
  ☆15Feb 3, 2020Updated 6 years ago
• HackingThings / SuperSneakyExec

  View on GitHub
  Loading and executing shellcode in C# without PInvoke.
  ☆22Jan 10, 2022Updated 4 years ago
• SySS-Research / ldif2bloodhound

  View on GitHub
  Convert an LDIF file to JSON files ingestible by BloodHound
  ☆45Apr 4, 2025Updated 10 months ago
• KingOfTheNOPs / EnableWebDAVClient-BOF

  View on GitHub
  Cobalt Strike Beacon Object File to enable the webdav client service on x64 windows hosts
  ☆23Sep 15, 2023Updated 2 years ago
• hwbp / NTDLL-Unhook

  View on GitHub
  proper ntdll .text section unhooking via native api. unlike other unhookers this doesnt leave 2 ntdlls loaded. x86/x64/wow64 supported.
  ☆52Dec 9, 2025Updated 2 months ago
• blacklanternsecurity / mklnk

  View on GitHub
  Create a lnk shortcut file for Windows
  ☆24Apr 23, 2019Updated 6 years ago
• zimnyaa / inmembof.py

  View on GitHub
  A small example of loading BOFs in Python with pure reflection
  ☆19Jan 26, 2023Updated 3 years ago
• snovvcrash / BOFs

  View on GitHub
  Beacon Object Files (not Buffer Overflows)
  ☆58Mar 6, 2023Updated 2 years ago
• Hagrid29 / BOF-CredUI

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses CredUIPromptForWindowsCredentials API to invoke credential prompt
  ☆23Nov 23, 2022Updated 3 years ago
• DanielRTeixeira / PowerShell

  View on GitHub
  My PowerShell bag of tricks
  ☆27Aug 2, 2017Updated 8 years ago
• hegusung / LeakedDBParser

  View on GitHub
  Just a quick'n'dirty tool to parse leaked databases (csv-like or sql format)
  ☆23Feb 4, 2018Updated 8 years ago
• SecurityRiskAdvisors / msspray

  View on GitHub
  Password attacks and MFA validation against various endpoints in Azure and Office 365
  ☆153Feb 10, 2023Updated 3 years ago
• CCob / gookies

  View on GitHub
  A Chrome cookie dumping utility
  ☆46Feb 21, 2020Updated 5 years ago
• qsecure-labs / Sp00fer

  View on GitHub
  Sp00fer blog post -
  ☆24Jul 19, 2022Updated 3 years ago
• outflanknl / RedELK-workshop

  View on GitHub
  Items related to the RedELK workshop given at security conferences
  ☆29Sep 28, 2023Updated 2 years ago
• AbdulRhmanAlfaifi / lnk_parser

  View on GitHub
  lnk_parser is a full rust implementation to parse windows LNK files
  ☆22Jul 12, 2025Updated 7 months ago
• fortalice / pyldapsearch

  View on GitHub
  Tool for issuing manual LDAP queries which offers bofhound compatible output
  ☆57Jun 2, 2024Updated last year
• Flangvik / SharpAppLocker

  View on GitHub
  C# port of the Get-AppLockerPolicy PS cmdlet
  ☆100Dec 8, 2022Updated 3 years ago
• nick-frischkorn / SuspendEventLogBOF

  View on GitHub
  Beacon Object File to locate and suspend the threads hosting the Event Log service
  ☆29Jun 17, 2022Updated 3 years ago
• k3idii / CobaltStrike-Tools

  View on GitHub
  Tools for playing w/ CobaltStrike config - extractin, detection, processing, etc...
  ☆28Apr 13, 2023Updated 2 years ago