Alternatives and similar repositories for DPAPISnoop:

Users that are interested in DPAPISnoop are comparing it to the libraries listed below

• Wh04m1001 / DiagTrackEoP
  ☆88Updated 2 years ago
• eversinc33 / SharpStartWebclient
  Programmatically start WebClient from an unprivileged session to enable that juicy privesc.
  ☆74Updated 2 years ago
• LuemmelSec / ntlmrelayx.py_to_exe
  ☆86Updated last year
• X-C3LL / SharpNTLMRawUnHide
  C# version of NTLMRawUnHide
  ☆72Updated 2 years ago
• rasta-mouse / SCMUACBypass
  ☆97Updated last year
• Crypt0s / DelegationBOF
  ☆141Updated 2 years ago
• G0ldenGunSec / GetWebDAVStatus
  Determine if the WebClient Service (WebDAV) is running on a remote system
  ☆133Updated last year
• MayerDaniel / profiler-lateral-movement
  Lateral Movement via the .NET Profiler
  ☆81Updated 4 months ago
• ChoiSG / OneDriveUpdaterSideloading
  Payload for DLL sideloading of the OneDriveUpdater.exe, based on the PaloAltoNetwork Unit42's blog post
  ☆91Updated 2 years ago
• susMdT / SharpAgent
  C# havoc implant
  ☆99Updated 2 years ago
• waawaa / AMSI_Rubeus_bypass
  ☆62Updated 2 years ago
• n00py / GetFGPP
  Get Fine Grained Password Policy
  ☆69Updated this week
• klezVirus / SharpLdapRelayScan
  C# Port of LdapRelayScan
  ☆81Updated 3 years ago
• puzzlepeaches / NTLMRecon
  Enumerate information from NTLM authentication enabled web endpoints 🔎
  ☆35Updated last year
• ewby / Mockingjay_BOF
  Cobalt Strike + Brute Ratel C4 Beacon Object File (BOF) Conversion of the Mockingjay Process Injection Technique
  ☆149Updated last year
• trustedsec / CS_COFFLoader
  ☆127Updated last year
• morRubin / NegoExRelay
  ☆88Updated 2 years ago
• cybersectroll / SharpPersistSD
  ☆87Updated 11 months ago
• cube0x0 / LdapSignCheck
  Beacon Object File & C# project to check LDAP signing
  ☆189Updated 8 months ago
• xpn / CloudInject
  ☆110Updated 4 months ago
• xpn / ntlmquic
  POC tools for exploring SMB over QUIC protocol
  ☆122Updated 3 years ago
• NotMedic / Invoke-Nanodump
  HelpSystems Nanodump, but wrapped in powershell via Invoke-ReflectivePEInjection
  ☆55Updated 3 years ago
• mertdas / SharpLateral
  Lateral Movement
  ☆122Updated last year
• trustedsec / PPLFaultDumpBOF
  ☆140Updated last year
• rasta-mouse / PPEnum
  Simple BOF to read the protection level of a process
  ☆114Updated last year
• netero1010 / Quser-BOF
  Cobalt Strike BOF for quser.exe implementation using Windows API
  ☆85Updated 2 years ago
• iamagarre / BadExclusionsNWBO
  BadExclusionsNWBO is an evolution from BadExclusions to identify folder custom or undocumented exclusions on AV/EDR
  ☆75Updated last year
• xforcered / BOFMask
  ☆125Updated last year
• OG-Sadpanda / SharpSword
  Read the contents of MS Word Documents using Cobalt Strike's Execute-Assembly
  ☆117Updated 6 months ago
• 0xe7 / RoastInTheMiddle
  ☆71Updated last year