Alternatives and similar repositories for Certipy

Users that are interested in Certipy are comparing it to the libraries listed below

• GhostPack / Certify
  Active Directory certificate abuse.
  ☆1,874Updated last month
• CravateRouge / bloodyAD
  BloodyAD is an Active Directory Privilege Escalation Framework
  ☆2,029Updated last week
• p0dalirius / Coercer
  A python script to automatically coerce a Windows server to authenticate on an arbitrary machine through 12 methods.
  ☆2,143Updated 3 months ago
• SnaffCon / Snaffler
  a tool for pentesters to help find delicious candy, by @l0ss and @Sh3r4 ( Twitter: @/mikeloss and @/sh3r4_hax )
  ☆2,648Updated 2 months ago
• Flangvik / SharpCollection
  Nightly builds of common C# offensive tools, fresh from their respective master branches built and released in a CDI fashion using Azure …
  ☆2,718Updated last month
• dirkjanm / BloodHound.py
  A Python based ingestor for BloodHound
  ☆2,308Updated 2 months ago
• r3motecontrol / Ghostpack-CompiledBinaries
  Compiled Binaries for Ghostpack
  ☆1,559Updated last year
• itm4n / PrivescCheck
  Privilege Escalation Enumeration Script for Windows
  ☆3,598Updated last month
• ropnop / kerbrute
  A tool to perform Kerberos pre-auth bruteforcing
  ☆3,167Updated last year
• SpecterOps / SharpHound
  C# Data Collector for BloodHound
  ☆1,138Updated last week
• Greenwolf / ntlm_theft
  A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
  ☆1,285Updated 3 months ago
• GhostPack / Rubeus
  Trying to tame the three-headed dog.
  ☆4,788Updated last month
• gtworek / Priv2Admin
  Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.
  ☆2,358Updated 2 years ago
• login-securite / lsassy
  Extract credentials from lsass remotely
  ☆2,169Updated last month
• lefayjey / linWinPwn
  linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
  ☆2,132Updated 3 weeks ago
• itm4n / PrintSpoofer
  Abusing impersonation privileges through the "Printer Bug"
  ☆2,147Updated 5 years ago
• dirkjanm / krbrelayx
  Kerberos relaying and unconstrained delegation abuse toolkit
  ☆1,481Updated 10 months ago
• login-securite / DonPAPI
  Dumping DPAPI credz remotely
  ☆1,286Updated 9 months ago
• safebuffer / vulnerable-AD
  Create a vulnerable active directory that's allowing you to test most of the active directory attacks in a local lab
  ☆2,235Updated last year
• S3cur3Th1sSh1t / Amsi-Bypass-Powershell
  This repo contains some Amsi Bypass methods i found on different Blog Posts.
  ☆2,092Updated last year
• Dec0ne / KrbRelayUp
  KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default…
  ☆1,623Updated 3 years ago
• 61106960 / adPEAS
  Powershell tool to automate Active Directory enumeration.
  ☆1,261Updated 3 months ago
• topotam / PetitPotam
  PoC tool to coerce Windows hosts to authenticate to other machines via MS-EFSRPC EfsRpcOpenFileRaw or other functions.
  ☆2,138Updated last year
• davidprowe / BadBlood
  BadBlood by @davidprowe, Secframe.com, fills a Microsoft Active Directory Domain with a structure and thousands of objects. The output of…
  ☆2,200Updated 2 years ago
• S3cur3Th1sSh1t / WinPwn
  Automation for internal Windows Penetrationtest / AD-Security
  ☆3,613Updated 3 months ago
• BeichenDream / GodPotato
  ☆2,137Updated 2 years ago
• netwrix / pingcastle
  PingCastle - Get Active Directory Security at 80% in 20% of the time
  ☆2,711Updated 2 months ago
• S3cur3Th1sSh1t / PowerSharpPack
  ☆1,649Updated 8 months ago
• fortra / nanodump
  The swiss army knife of LSASS dumping
  ☆2,044Updated last year
• calebstewart / CVE-2021-1675
  Pure PowerShell implementation of CVE-2021-1675 Print Spooler Local Privilege Escalation (PrintNightmare)
  ☆1,080Updated 4 years ago